Access control and Authorization
Ubilogin provides a powerful access control meta-information model and engine for authorization policies. The access control policy can be defined for each protected service and application specifically.
The policy may include requirements with respect to authentication mechanism, as well as other attributes. Ubilogin access control model is based on roles (Role Based Access Control, RBAC) and attributes (Attribute Based Access Control, ABAC).
The policy may be defined with direct (explicit) definitions, indirect (user "inherits" access rights through implicit group memberships), attributes based (whereby an attribute in conjuntion with the user's identity results in the permission to access) and dynamic (whereby a logical rule is executed each time the access control is triggered).