A PERMIS-Based Authorization Solution Between Portlets and Back-End Web Services

A portal is a Web-based application that acts as an entry point to distributed resources. Individual portlets in a portal can be used to integrate information from a variety of back-end Web services. However, when Web services are deployed, they are available to unintended clients not related to the portal so a general solution for authorizing access to them is needed that is integrated with the portal's own authentication and authorization mechanisms. This paper investigates the feasibility of an implementation of a general purpose solution for authorization between portlets and their back end Web services based on PrivilEge and Role Management Infrastructure Standards (PERMIS) which uses Web services security standards such as WSSecurity and SAML.