Gateway Access Control (Sun Java System Portal Server 7.1 Deployment Planning Guide)

Sun Java System Portal Server 7.1 Deployment Planning Guide

Previous: Gateway and SSL Support
Next: Gateway Logging

Gateway Access Control

The Gateway enforces access control by using Allowed URLs and Denied URLs lists. Even when URL access is allowed, the Gateway checks the validly of the session against the Access Manager session server. URLs that are designated in the Non Authenticated URL list bypass session validation, as well as the Allowed and Denied lists. Entries in the Denied URLs list take precedence over entries in the Allowed URLs list. If a particular URL is not part of any list, then access is denied to that URL. The wildcard character, *, can also be used as a part of the URL in either the Allow or Deny list.

Previous: Gateway and SSL Support
Next: Gateway Logging