Cookie Revolver

The cookie revolver framework was developed by Johan Macedo. It is an open source Java security application that can provide 2 factor security for a web application. The application essentially restricts access to the application by requiring a user to 1) know a username and password and 2) to be accessing the application from a machine that has the correct IP address or has a cookie installed on it.

 The cookie revolver can be obtained on sourceforge at: cookie revolver framework

How the Cookie Revolver Works in CAISI-OSCAR

 
The administrator can set 3 levels of access:

Levels of Access

1. admin is highest level, can administer other people's restrictions
2. by remote - power user - user can set it up anywhere in the world - you are a power user, but you cannot administrate the cookies
3. restricted access - lowest level - can't log in unless supercertificate is installed onto the computer that is being used or unless the computer's IP falls within the allowed IP range
   

  Admin Functions

in administration page of oscar, there's a link to cookie revolver admin page

there are different admin functions,
e.g. set up access restrictions
generate supercertificate (for many users on this computer)

then create different CAISI roles and give them differential access ....

can also do by user name

User Features

Remote Access (Power User)

As a power user, the administrator allows you to access CAISI from anywhere on the internet. Everytime you log onto a new machine, you are asked security questions that allow you to install cookies onto the machine you are using. You alone are then authorised to use that machine with your usual username and password.

Restricted Access (Regular User)

As a regular user, the administrator installs a supercertificate on a computer that you use or restricts your access by IP address. Any user who can log into that computer can then access CAISI from that machine using their usual username and password.