Defines the resources that are accessible from the service. Access to these resources is protected or controlled by the iChain* service. Protected resources can be Web servers, Web sites, or Web-based add-on applications. Protected resources are applications that require additional user information about the user to be passed into the application to protect the resource or customize the user interface. This additional information is usually stored in NDS* or some other database. A special plug-in called object-level access control (OLAC) is used to retrieve the additional information.
Resource Name
The name of the protected resource. This name must be unique for all ISO objects. The
resource name is referenced in the Access Control List (ACL) rule pages.
URL Prefix
The URL of the protected resource.
Access
Protected resources can be defined as Public Access, Restricted Access, or Secure Access.
iChain will apply the policy of the protected resource that best matches the URL the user
was trying to access. The three levels of access are defined as follows:
Public
Any user can access the site, without the need to authenticate.
Restricted
Authentication is enforced, but not authorization. The user can login as any valid user in the tree and get access to the resource.
Secure
Both authentication and authorization are enforced. Users must authenticate and be a member of an ACL Rule that allows them access to the resource before they can access the site.
Pass Parameters in the Query String
This option specifies that any OLAC parameters to forward to the web server should be sent in
the URL query string. OLAC parameters named ICHAIN_UID and ICHAIN_PWD will always be sent in
the authorization header.
Pass Parameters as Header Variables
This option specifies that any OLAC parameters to forward to the web server should be sent as
custom headers.
* Novell trademark. ** Third-party trademark. See Legal Notices.