next up previous
Next: Program Based Access Control Up: Implementation Previous: Role Compatibility, Admin and

Type Compatibility

For each RSBAC target type one persistent list of lists is registered. The first level index is the role number, the second level index is the type number. Only second level data is used, it contains the set of allowed requests coded as a 64 bit integer used as bit set.

Absence of an item is interpreted as the default value of an empty set.


Amon Ott