The authentication and authorization with SHIRO depends on the implementitation in so called realms. SHIRO is used in JS7 and JobScheduler. For JS7 it should be removed.

I have implemented a replacement for SHIRO that is based on Identity Services. The identity services to provide an access token as SHIRO does. I have implemented the Identity Services

• SHIRO: Until it is removed completly from JS7 the SHIRO implementation is covered by a Identity Service layerJOC: This is a intern user/password authentication.
• VAULT: Vault is an extern Identity access Management system that provides different security systems. I have implemented the identity service for user/password and ldap.
• VAULT-JOC: Like VAULT but the roles are managed internally and not by VAULT policies.
• VAULT-JOC-ACTIVE: Like VAULT-JOC but the users are manaeged internally and will be synchronized with the VAULT users
• LDAP: Usind an active directory or open ldap system for authentication and authorization. Using groups coming from LDAP and implementing a groups roles mapping to JS7 roles.
• LDAP-JOC: Like LDAP but the roles are managed internally and not by VAULT policies.