ABSTRACT
This chapter looks at various security aspects of the portal, and a few special security scenarios such as external secure service integration, secure content integration, and user registration, which fall under the realm of portal security. The portal platform is used to deliver many applications for which security is of prime importance. Applications related to e-commerce, banking, retail all require robust security. Portal security mainly relies on two things: the portal’s in-built security model along with its extensions, and external enterprise security infrastructure. The security proxies in the web server help the administrators to configure a variety of security and routing rules. These proxy agents also pass user context information and entitlements information, which can be used by portals for personalization. Enforcing role-based security access is an in-built feature in most portal products. Web single sign on is one of the most common scenarios in an enterprise eco-system wherein the portal needs to interact with various secured internal applications.
