Authorization API examples
Applications can use the authorization API to do access control on specific and specialized processes.
- Example 1
- You can design a graphical interface to dynamically show interface controls as active or inactive, according to the results of the authorization check.
- Example 2
- Figure 1 illustrates a request for a Common Gateway Interface (CGI) transaction by a web application.
The lowest level of authorization, as illustrated in Figure A of Figure 1, involves an “all-or-nothing” access control on the Uniform Resource Locator (URL). This coarse-grained level of authorization determines only whether the client can run the CGI program. If access is allowed to the CGI application, no further control is available to resources manipulated by the CGI application.
As illustrated in Figure B of Figure 1, access controls were set on resources that the CGI program manipulates. The web application is configured to use the authorization API. The CGI program can call the authorization service to make authorization decisions on the resources it manipulates based on the identity of the requesting client.
