Authentication and authorization of Scheduler server
When a user tries to schedule a workflow through a kepler client, the scheduler server should check weather the user has the permission.
The session id of the user will be passed to the scheduler when user calls the methods like add/delete/scheduleJob. Scheduler server will used the sessionid to call the two methods:
String isLoggedIn(String sessionid)
boolean isAuthorized(String user)
This mechanism has existed in our current scheduler server code.