Name | Value | ||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
NUMBER | 4851 | ||||||||||||||||||||||||||||||||
IA # | 4851 | ||||||||||||||||||||||||||||||||
DATE CREATED | 2006/04/21 | ||||||||||||||||||||||||||||||||
CUSTODIAL PACKAGE | KERNEL | ||||||||||||||||||||||||||||||||
USAGE | Supported | ||||||||||||||||||||||||||||||||
TYPE | Other | ||||||||||||||||||||||||||||||||
DBIC APPROVAL STATUS | APPROVED | ||||||||||||||||||||||||||||||||
NAME | KAAJEE | ||||||||||||||||||||||||||||||||
GENERAL DESCRIPTION | KAAJEE addresses the Authentication and Authorization (AA) needs of HealtheVet-VistA Web-based applications in the J2EE environment. Most major J2EE application servers (e.g., BEA WebLogic V. 8.1 [SP4 or higher] and Oracle's 9iAS) allow enterprises to override the default source of AA and replace it with custom, enterprise-specific sources for AA. In order to rapidly develop an AA solution for HealtheVet-VistA web-based applications without creating a new enterprise user store, KAAJEE takes full advantage of this feature of creating a custom solution. This enables KAAJEE to provide a solution that has a similar look-and-feel of what VistA users are currently accustomed to. KAAJEE authenticates against a VistA M Server first with Access and Verify codes via VistALink's AV connection spec (i.e., KaajeeVistaLinkConnectionSpec). After the user has been properly authenticated against a VistA M Server, KAAJEE dynamically creates a temporary username and password and populates this into a Structured Query Language (SQL) database via custom Security Service Provider Interfaces (SSPIs). This username and password is needed for the second level/phase/pass authentication for the J2EE container. Currently, Kernel maintains the primary HealtheVet-VistA user store (i.e., NEW PERSON file [#200]), and provides both Authentication and Authorization (AA) services for all HealtheVet-VistA applications. By leveraging Kernel, KAAJEE aims to authenticate and authorize J2EE Web users to their applications using Kernel's AA capabilities. |
||||||||||||||||||||||||||||||||
STATUS | Active | ||||||||||||||||||||||||||||||||
KEYWORDS | KAAJEE | ||||||||||||||||||||||||||||||||
DURATION | Till Otherwise Agreed | ||||||||||||||||||||||||||||||||
COMPONENT/ENTRY POINT |
|