
In Jeeves, you may control who accesses particular
resources such as files and servlets.
When you open the Jeeves Administration web page, and
select the "Access Control" section, the right part
of the page has two parts:
- At the top is a table, with columns:
- Resource ... e.g. the servlet or file;
- Scheme ... in alpha1, this must be
the "Basic" authentication scheme;
- Realm ... which realm's ACLs apply
to this resource;
- ACL ... which of the ACLs in that
realm controls access to the resource;
- At the bottom, some fields, buttons, and a choice box
which shows the realm whose groups are being displayed.
In Jeeves Alpha1, there is an access control policy which
is always active, but which is not listed in the "Access Control"
section of the web page. You cannot change this particular
policy. Server administration is controlled through the
adminRealm, and the adminAcl in that realm.
Anyone granted the GET privilege in the "adminAcl"
is allowed to sign on to, and use, the administrative pages.
This uses a variant of HTTTP "Digest" authentication, which is
not currently provided in other parts of the Jeeves server.
Adding Access Controls to a Resource
You may specify an Access Control List (ACL) which is
used to control access to a resource:
- Enter the name of the resource in the field
labeled Resource:
- Servlet resources are labeled
Servlet.servletname, where
servletname is the name specified
in the "Servlet Loading" section of the
administration tool.
- File resources are paths as understood
by the host operating system, relative
to the server root directory.
- Enter
Basic
in the field
labeled Scheme.
- Enter the name of the realm supplying the
ACL in the field labeled Realm.
- Enter the name of the ACL in the field
labeled ACL.
- Press the Add button.
Removing Access Controls from a Resource
You may delete the binding between a resource and
an Access Control List:
- Select the row of the access control table
which controls the particular binding you want
to delete.
- Press the Delete button on the screen.
jeeves@java.sun.com
Last modified: 08/19/96