Describing the Authorization Model

Oracle Secure Enterprise Search requires a connection to an OID server to perform out-of-the-box authentication and authorization. The ACLs for the documents need to be stamped with GUIDs that are OID users or groups. This has several issues.

With the advanced versions of SES, the dependency on OID and GUID-based ACLs are replaced with a flexible, extensible framework. This framework will allow customers to implement their own interface to a directory (a ‘Identity Plugin’) and connect SES to that directory via the plugin. Likewise, GUID-based ACL stamping is replaced by Authorization Plugins which permit customers to define their own security model for each source.

In this module, we will look at the flexible extensible framework that includes Authentication and the Authorization modules.