Tags:access control, multi-product deployment, single sign-on and software product line
Abstract:
The needs to reduce costs on cloning and adapting software leads to the emerging of Software Product Line Engineering (SPLE), which enables developers to create different software with common requirements and defined variabilities. To support web application generation based on the SPLE approach, a dedicated engine is necessary. We built the SPLELive Engine as our alternative approach to that problem. However, we also need to address another issue of SPLE web generation engine which is multi-product access control. This paper explains how the multi-product access control issue was tackled by doing experimental research using the single sign-on approach with external OAuth 2 authentication services and a decentralized authorization mechanism. This paper also explains and demonstrates how the SPLELive Engine handles authorization configuration variability using delta-oriented programming.
Towards Integrated Access Control for Software Product Line Engineering Web Development