OACC (pronounced Oak) is an advanced Java Application Security Framework. In a nutshell, OACC allows your application to enforce security by answering the question: Is entity ‘A’ allowed to perform action ‘p’ on entity ‘B’?
The key design goals of OACC are to:
support fine grained access control
Example: set (JohnDoe) permissions on (Sales2014.xls) to (READ,WRITE)
support coarse grained access control
Example: set (JohnDoe) permissions on (DOCUMENT) to (READ,WRITE) in domain (NY Office)
support logical security domains for use in multi-tenant application architectures
simplify the maintenance of complex, real world security topologies