Atoti Security: Authorization and Entitlements
Authorization is the process to attribute entitlements to an authenticated user (entitlements can be the username, user roles, user groups...). With respect to those entitlements the user may be allowed to access the resources of the application. The most important resource is probably the query engine, the ability to execute queries in Atoti. But in a full scale application, there may be custom services, administration consoles, batch entry points that can benefit from the same role based authorization.
Atoti authorization is integrated through the Spring Security framework. Entitlements can be retrieved from any existing source: directories, databases, simple XML configuration, or an existing legacy application.