ActivePivot Security: Authorization and Entitlements

Authorization is the process to attribute entitlements to an authenticated user (entitlements can be the username, user roles, user groups...). With respect to those entitlements the user may be allowed to access the resources of the ActivePivot application. The most important resource is probably the query engine, the ability to execute queries in ActivePivot. But in a full scale ActivePivot application, there may be custom services, administration consoles, batch entry points that can benefit from the same role based authorization.

ActivePivot authorization is integrated through the Spring Security framework. Entitlements can be retrieved from any existing source: directories, databases, simple XML configuration, or an existing legacy application.