Security

To support a multi-user environment, the framework can be configured such that dispatcher processes will be executed under user privileges. When this functionality is enabled, the worker will execute a separate process that authenticates the task, and if authenticated, executes the dispatcher with the privileges of the owner of the task. The authentication is based on a challenge/response mechanisms such that the authentication key of the user is always send encoded over the network. After successful authentication, the credentials are confirmed with the permissions to execute the dispatcher process in question, before dropping to the user credentials. As such, even if the key would be retrieved, only executables that belong to the user to whom the key was given can be executed.