I am using WSO2 Balana XACML 3.0. I want to distribute my PEP and PDP as a service so that I can host multiple instances of PEP and PDP on the virtual machine. What is the best way to achieve this and how can I handle multiple PEP and PDP?
how to distribute PEP and PDP in XACML as a service call
630 views Asked by Utsav At
1
There are 1 answers
Related Questions in WSO2
- Auto redirection in WSO2 API
- writing into file using VFS -WSO2 ESB 4.8.1
- how can I improve the response of BPS
- How to route by call method in proxy with WSO2?
- writing into file (Converting Base64 to Binary) values Using VFS and ESB 4.8.1
- How to publish wsdl when using different endpoints in proxy with WSO2?
- Importing users into a WSO2 IS User Database
- WSO2 IS - Do a Single Logout using the IdentitySAMLSSOService
- Wso2 DSS Tenant Endpoint Url not working
- How to deploy API Managers behind ELBs on AWS and preserve X-Forwarded headers?
Related Questions in XACML
- Is one XACML file per user a good approach?
- XACML: How to control the access to the properties in a resource
- Complex Authorization using XACML
- WSO2ESB Create a custom EntitlementCallbackHandler
- WSO2 4.5.0 XACML entitlement with role in secondary user store
- WSO2 is: What happens when more than one user store return an attribute with the same name?
- What is a standard way to call WSO2 ESB as PEP for XACML Authorization wtih IDP from webapplication?
- WSO2 Identity server GUI creating different attribute id for policy and request
- Does XACML distinguish between "attribute value is null" and "attribute is missing"
- Wso2 Identity server: improve the performance of an AttributeFinderModule for attributes on resources
Related Questions in XACML3
- Is one XACML file per user a good approach?
- XACML: How to control the access to the properties in a resource
- WSO2 is: What happens when more than one user store return an attribute with the same name?
- Does XACML distinguish between "attribute value is null" and "attribute is missing"
- Wso2 Identity server: improve the performance of an AttributeFinderModule for attributes on resources
- How to use OpenAz ServiceFactory method?
- How do I unmarshall this XACML XML snippet using JAXB?
- How to create XACML PEP Request using WSO2 Balana?
- XACML 3.0 multiple PEP and PDP instances
- how to distribute PEP and PDP in XACML as a service call
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Popular Tags
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
I guess, you want to separate out the PDP functions as web service API. Then multiple PEP can call one PDP (or cluster of PDP)? Balana is an java library that implement XACML specification. If you need to expose its functions as an web service API, you want to deploy this library in a service hosting server as as Axis2. You can use Axis2 clustering to communicate with multiple servers (cluster). Further more, WSO2 Identity Server is also using Balana library, and It has exposed PDP function as web service API. If you are thinking about the performance, HA, clustering and so on, It is better to use WSO2 Identity Server rather than the Balana library. Because it contains all feature that is needed for production step. (WSO2 Identity Server also an opensource server that you can use freely). However, It is not required to use WSO2IS. You can use Balana. As i mentioned you may need to do some modifications to use it as a web service API and to use it in a production. To get more understand, I could point to the source code to see how Balana library has been used by WSO2 Identity Server. Please check here. Identity Server creates an Balana instance for evaluating XACML requests. Same as you can use Balana library with any platform that you prefer or else you can build your own XACML PDP, modifying it...