PAS for OpenEdge employs the Spring Security framework to provide enterprise-level application security for:

  • Authentication—Verifies that username and password combinations are valid.
  • Authorization—Enforces access control. User accounts are granted permissions according to their assigned roles.

Spring Security is a Java-based framework included in the $DLC/servers/pasoe/common/lib directory of the OpenEdge install. Its configuration files are located in the $DLC/servers/pasoe/common/spring directory. To implement the Spring Security model, use the appropriate oeablSecurity.properties file in the PAS for OpenEdge instance.

For more information about the oeablSecurity.properties file, see About oeablsecurity.properties.

For general information about Spring Security, see https://spring.io/projects/spring-security.