TY - GEN
T1 - Towards Integrated Access Control for Software Product Line Engineering Web Development
AU - Affan, Ichlasul
AU - Novrialdi, Adrika
AU - Komarudin, Oman
AU - Fadhlillah, Hafiyyan Sayyid
AU - Azurat, Ade
N1 - Funding Information:
This work was partially funded by Universitas Indonesia under PUTI Grant Number: NKB-883/UN2.RST/HKP.05.00/2020.
Publisher Copyright:
© 2022, The Author(s), under exclusive license to Springer Nature Switzerland AG.
PY - 2022
Y1 - 2022
N2 - The needs to reduce costs on cloning and adapting software leads to the emerging of Software Product Line Engineering (SPLE), which enables developers to create different software with common requirements and defined variabilities. To support web application generation based on the SPLE approach, a dedicated engine is necessary. We built the SPLELive Engine as our alternative approach to that problem. However, we also need to address another issue of SPLE web generation engine which is multi-product access control. This paper explains how the multi-product access control issue was tackled by doing experimental research using the single sign-on approach with external OAuth 2 authentication services and a decentralized authorization mechanism. This paper also explains and demonstrates how the SPLELive Engine handles authorization configuration variability using delta-oriented programming.
AB - The needs to reduce costs on cloning and adapting software leads to the emerging of Software Product Line Engineering (SPLE), which enables developers to create different software with common requirements and defined variabilities. To support web application generation based on the SPLE approach, a dedicated engine is necessary. We built the SPLELive Engine as our alternative approach to that problem. However, we also need to address another issue of SPLE web generation engine which is multi-product access control. This paper explains how the multi-product access control issue was tackled by doing experimental research using the single sign-on approach with external OAuth 2 authentication services and a decentralized authorization mechanism. This paper also explains and demonstrates how the SPLELive Engine handles authorization configuration variability using delta-oriented programming.
KW - Access control
KW - Multi-product deployment
KW - Single sign-on
KW - Software product line
UR - http://www.scopus.com/inward/record.url?scp=85113491698&partnerID=8YFLogxK
U2 - 10.1007/978-3-030-82616-1_4
DO - 10.1007/978-3-030-82616-1_4
M3 - Conference contribution
AN - SCOPUS:85113491698
SN - 9783030826154
T3 - Lecture Notes in Networks and Systems
SP - 34
EP - 43
BT - Proceedings of International Conference on Emerging Technologies and Intelligent Systems - ICETIS 2021
A2 - Al-Emran, Mostafa
A2 - Al-Sharafi, Mohammed A.
A2 - Al-Kabi, Mohammed N.
A2 - Shaalan, Khaled
PB - Springer Science and Business Media Deutschland GmbH
T2 - International Conference on Emerging Technologies and Intelligent Systems, ICETIS 2021
Y2 - 25 June 2021 through 26 June 2021
ER -