Adding new files.

auth_token/server/CasaAuthServer/README

@@ -0,0 +1,40 @@
+/***********************************************************************
+ *
+ *  README for CasaAuthServer
+ *
+ ***********************************************************************/
+
+INTRODUCTION
+
+CasaAuthServer is the CASA Authentication Token Service (ATS). It is implemented
+as a set of Java servlets and classes that execute in the Tomcat environment.
+
+The ATS is responsible for providing clients with the necessary authentication
+policy information, for authenticating client entities, and for providing
+clients with Authentication Tokens that they can then use for authenticating
+to CASA Authentication enabled services.
+
+The ATS utilizes mechanism plug-ins for authenticating client entities as well
+Identity Token Providers for the generation of Identity Tokens.
+
+CONFIGURING ADDITIONAL AUTHENTICATION MECHANISMS
+
+- TBD -
+
+CONFIGURING ADDITIONAL IDENTITY TOKEN PROVIDERS
+
+- TBD -
+
+SECURITY CONSIDERATIONS
+
+- TBD -
+ 
+
+
+
+                
+
+
+
+
+

auth_token/server/CasaAuthServer/TODO

@@ -0,0 +1,22 @@
+/***********************************************************************
+ *
+ *  TODO for CasaAuthServer
+ *
+ ***********************************************************************/
+
+INTRODUCTION
+
+This file contains a list of the items still outstanding for CasaAuthServer.
+
+OUTSTANDING ITEMS
+
+- Switch to a Web Services model where the Client/Server protocol uses SOAP.
+- Switch to use WS-Security and WS-Trust for Authentication Tokens.
+- Add code to verify that client/server communications occur over HTTPS.
+- Add logging.
+- Create plug-in API for Identity Token Providers.
+- Create plug-in API for Authentication Mechanisms.
+- Obtain authentication policy configuration from file system.
+- Integrate into CASA build environment.
+- Review Code.
+