EPICS Home EPICS Controls Argonne National Laboratory

Experimental Physics and
Industrial Control System

Format page
for printing


Search Tech-talk
1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  2019  2020  <20212022  2023  2024  Index 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  2019  2020  <20212022  2023  2024 
<== Date ==> <== Thread ==>
Subject: Re: [EXTERNAL] What is the best (and simple) way to implement security in a Phoebus solution?
From: "Kasemir, Kay via Tech-talk" <tech-talk at aps.anl.gov>
To: "tech-talk at aps.anl.gov" <tech-talk at aps.anl.gov>, Oscar Ibañez <oscar.ibanez.spain.1980 at gmail.com>
Date: Wed, 21 Apr 2021 12:19:08 +0000 
> Is there any recomendable solution to implement username authentication 
> in Phoebus? I mean, some kind of solution to save critical information 
> (password hash?) that, then, it will be used to authenticate an user. 

Phoebus itself doesn't perform authentication. It depends on the full power of the operating system and simply accepts the current user as an authenticated user.
We do support authorization so you can for example enable/disable certain features in your code based on the current user, see online help https://control-system-studio.readthedocs.io/en/latest/authorization.html

There is also a SecureStore class based on the standard Java KeyStore that can be used to store name/value pairs, but it only offers weak protection when you use it with the default, code-generated password, see https://github.com/ControlSystemStudio/phoebus/blob/master/core/security/src/main/java/org/phoebus/security/store/SecureStore.java

-Kay
Replies:
Re: [EXTERNAL] What is the best (and simple) way to implement security in a Phoebus solution? Oscar Ibañez via Tech-talk
References:
What is the best (and simple) way to implement security in a Phoebus solution? Oscar Ibañez via Tech-talk
Navigate by Date:
Prev: Re: What is the best (and simple) way to implement security in a Phoebus solution? Till Straumann via Tech-talk
Next: Re: AreaDetector Defective Pixel Correction Plugin Mark Rivers via Tech-talk
Index: 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  2019  2020  <20212022  2023  2024 
Navigate by Thread:
Prev: Re: What is the best (and simple) way to implement security in a Phoebus solution? Till Straumann via Tech-talk
Next: Re: [EXTERNAL] What is the best (and simple) way to implement security in a Phoebus solution? Oscar Ibañez via Tech-talk
Index: 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  2019  2020  <20212022  2023  2024 
ANJ, 21 Apr 2021 Valid HTML 4.01! · Home · News · About · Base · Modules · Extensions · Distributions · Download ·
· Search · EPICS V4 · IRMIS · Talk · Bugs · Documents · Links · Licensing ·