Skip to content

ygrignon-sfdc/XACML

 
 

Repository files navigation

AT&T XACML

AT&T's reference implementation of the OASIS XACML 3.0 Standard. The AT&T framework represents the entire XACML 3.0 object set as a collection of Java interfaces and standard implementations of those interfaces. The AT&T PDP engine is built on top of this framework and represents a complete implementation of a XACML 3.0 PDP, including all of the multi-decision profiles. In addition, the framework also contains an implementation of the OASIS XACML 3.0 RESTful API v1.0 and XACML JSON Profile v1.0 WD 14. The PEP API includes annotation functionality, allowing application developers to simply annotate a Java class to provide attributes for a request. The annotation support removes the need for application developers to learn much of the API.

The AT&T framework also includes interfaces and implementations to standardize development of PIP engines that are used by the AT&T PDP implementation, and can be used by other implementations built on top of the AT&T framework. The framework also includes interfaces and implementations for a PAP distributed cloud infrastructure of PDP nodes that includes support for policy distribution and pip configurations. This PAP infrastructure includes a web application administrative console that contains a XACML 3.0 policy editor, attribute dictionary support, and management of PDP RESTful node instances. In addition, there are tools available for policy simulation.

The wiki has a lot of information on the organization of the software.

Click here to view the JavaDoc.

Tutorials and other useful information is also located on our Github Pages site. TBD - working on this 10/14.

Release

There is a branch v1.0 that is the official release. Master branch is WIP.

Requirements

  • Java JDK 1.8, you will need to ensure Eclipse has that JDK installed in your development environment.

  • Apache Maven to compile, install and run the software.

Building the source code

From the directory you downloaded the source to, just type 'mvn clean install'.

Running the projects

There are 3 webapps that need to run. Easiest to start them in this order in separate terminal windows:

  1. XACML-PAP-REST

Open a terminal window and cd to the XACML-PAP-REST subdirectory.

'mvn jetty:run-war'

By default it will be running at localhost:9090/pap

If you point your browser to that URL, you should get a JSON back listing the groups of pdps, the policies and PIP configurations for those groups.

  1. XACML-PDP-REST

Open a terminal window and cd to the XACML-PDP-REST subdirectory.

'mvn jetty:run-war'

By default it will be running at localhost:8080/pdp

If you point your browser to this URL you can get the current configuration for the PDP:

http://localhost:8080/pdp/?type=config

Please review the XACML-PDP-REST/pom.xml jetty maven configuration in order to override system properties to customize where the properties are read from, where log files are stored, where policies are stored, etc.

  1. XACML-PAP-ADMIN

Open a terminal window and cd to the XACML-PAP-ADMIN subdirectory.

'mvn jetty:run-war'

By default it will be running at localhost:8888/admin

If you point your browser to this URL you should see the Admin Console web page come up.

About

AT&T XACML 3.0 Implementation

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages

  • Java 83.0%
  • TSQL 10.1%
  • PLpgSQL 3.5%
  • HTML 3.4%