Database Reference
In-Depth Information
Oracle Entitlement Server
Oracle Entitlement Server
(
OES
) is mainly used for fine-grained authorization. For
example, some of the web applications have a requirement to restrict the resources
based on time, such as restricting access to a certain functionality of the website
between 9 AM and 5 PM. Any access after that should be denied. OES is a suitable
software for this use case.
OES implements authorization based on policies and provides a centralized system
for managing all the access policies, as shown in the following diagram:
One can also protect resources using the Java permission object. The following ex-
ample code snippet uses
java.io.FilePermission
for restricting access to a
file:
Variable = new java.io.FilePermission ("File
Directory path", "write");
You can also protect resources based on user roles or using attributes.
Some of the other Oracle security products with brief details are as follows:
•
Oracle Access Manager (OAM) (acquired from Oblix COREid Access
and Identity)
: Provides
Single-Sign-On
(
SSO
), authentication, and au-