WebSEAL-specific ACL policies
The following security considerations apply for the /WebSEAL container in the protected object space:
- The WebSEAL object begins the chain of ACL inheritance for the WebSEAL region of the object space.
- If we do not apply any other explicit ACLs, this object defines (through inheritance) the security policy for the entire Web space.
- The traverse permission is required for access to any object below this point.
ACL policies:
- /WebSEAL/host-instance_name
- /WebSEAL/host-instance_name/file
- WebSEAL ACL permissions
- Default /WebSEAL ACL policy
- Valid characters for ACL names
- Quality of protection POP
- Configuration of authorization database updates and polling
- Configure quality of protection levels
- Authorization decision information from HTTP requests
- Support for OAuth authorization decisions
- Use credential attributes in authorization decisions
Parent topic: Configuration for authorization