OACC (pronounced Oak) is an advanced Java Application Security Framework. OACC provides a high-performance access control API that provides permission based authorization services for Java application objects. It has support for hierarchical domains, super users, permission inheritance and impersonation.
In a nutshell, OACC allows your application to enforce security by answering the question:
Is entity 'A' allowed to perform action 'p' on entity 'B'?
The key design goals of OACC are to:
-
simplify the maintenance of complex, real world security topologies
-
fine grained access control
- example: grant John permissions READ, WRITE on SalesSummary-2014.xls
-
coarse grained access control
- example: grant John permission READ on Class:DOCUMENT in Domain:NY Office
-
logical security domains for use in multi-tenant application architectures
- example: Domain:NY Office
OACC persists all security relationships in database tables and currently supports the following databases:
- IBM DB2 10.5
- Microsoft SQL Server 12.0 (2014)
- Oracle 11g R2
- PostgreSQL 9.3
OACC is compatible with Java™ SE 7 (Java™ version 1.7.0), or higher.
OACC is open source software released under the commercial friendly Apache License, Version 2.0.
You can find more information about OACC, including the latest Javadocs, releases, and tutorials on the project website: oaccframework.org.
Acciente, LLC is a software company located in Scottsdale, Arizona specializing in systems architecture and software design for medium to large scale software projects. You can learn more about Acciente on our about us page.