6 Authorization
6.3 Access rights

The decision-making process when receiving a request for access to a particular system, application or application information content may, in certain steps, depend on access rights, arranged in an authorization file. Rules allocation is based on the models described in section 5.1 Authorization Model.

Example.

In the system is used RBAC model and are defined three roles:

  • administrator
  • owner of the group
  • user of the group

Administrator assign an owner or users access rights to applications in the system. Group owner can also assign access rights for each user to specific applications in the system. If the administrator has previously allocated to the group owner the rights to add, modify and delete content in a particular application, group owner may further assign those rights to a user. In that case user can also become a contributor of content, i.e. can also act as owner of data. Example of such applications is a service for shared multimedia content.