[apache#4467] docs: Refactor the security document and add access con…

…trol page (apache#4496) ### What changes were proposed in this pull request? Refactor the security document and add access control page. ### Why are the changes needed? Fix: apache#4467 ### Does this PR introduce _any_ user-facing change? No. ### How was this patch tested? Just docs.
qqqttt123 · Aug 15, 2024 · 8293bed · 8293bed
1 parent 7854745
commit 8293bed
Show file tree

Hide file tree

Showing 16 changed files with 1,013 additions and 336 deletions.
diff --git a/docs/assets/object.png b/docs/assets/object.png
diff --git a/docs/assets/privilege.png b/docs/assets/privilege.png
diff --git a/docs/assets/role.png b/docs/assets/role.png
diff --git a/docs/assets/user-group.png b/docs/assets/user-group.png
diff --git a/docs/assets/workflow.png b/docs/assets/workflow.png
diff --git a/docs/gravitino-server-config.md b/docs/gravitino-server-config.md
@@ -140,7 +140,7 @@ For more details, please refer to the definition of the plugin.
 
 ### Security configuration
 
-Refer to [security](security.md) for HTTPS and authentication configurations.
+Refer to [security](security/security.md) for HTTPS and authentication configurations.
 
 ### Metrics configuration
 

diff --git a/docs/how-to-use-gvfs.md b/docs/how-to-use-gvfs.md
@@ -274,7 +274,7 @@ FileSystem fs = filesetPath.getFileSystem(conf);
 ##### Using `OAuth` authentication
 
 If you want to use `oauth2` authentication for the Gravitino client in the Gravitino Virtual File System,
-please refer to this document to complete the configuration of the Gravitino server and the OAuth server: [Security](./security.md).
+please refer to this document to complete the configuration of the Gravitino server and the OAuth server: [Security](security/security.md).
 
 Then, you can configure the Hadoop configuration like this:
 
@@ -298,7 +298,7 @@ FileSystem fs = filesetPath.getFileSystem(conf);
 ##### Using `Kerberos` authentication
 
 If you want to use `kerberos` authentication for the Gravitino client in the Gravitino Virtual File System,
-please refer to this document to complete the configuration of the Gravitino server: [Security](./security.md).
+please refer to this document to complete the configuration of the Gravitino server: [Security](security/security.md).
 
 Then, you can configure the Hadoop configuration like this:
 

diff --git a/docs/iceberg-rest-service.md b/docs/iceberg-rest-service.md
@@ -81,7 +81,7 @@ You can also specify filter parameters by setting configuration entries in the s
 
 ### Security
 
-Gravitino Iceberg REST server supports OAuth2 and HTTPS, please refer to [Security](./security.md) for more details.
+Gravitino Iceberg REST server supports OAuth2 and HTTPS, please refer to [Security](security/security.md) for more details.
 
 ### Storage
 

diff --git a/docs/index.md b/docs/index.md
@@ -144,11 +144,18 @@ Gravitino provides a Flink connector to manage metadata in a unified way. To use
 
 Gravitino provides several ways to configure and manage the Gravitino server. See:
 
-* [Security](./security.md): provides security configurations for Gravitino, including HTTPS
-  and OAuth2 configurations.
 * [Gravitino metrics](./metrics.md): provides metrics configurations and detailed a metrics list
   of the Gravitino server.
 
+### Security
+
+Gravitino provides security configurations for Gravitino, including HTTPS, authentication and access control configurations.
+
+* [HTTPS](./security/how-to-use-https.md): provides HTTPS configurations.
+* [Authentication](./security/how-to-authenticate.md): provides authentication configurations including simple, OAuth, Kerberos.
+* [Access Control](./security/access-control.md): provides access control configurations.
+* [CORS](./security/how-to-use-cors.md): provides CORS configurations.
+
 ### Programming guides
 
 * [Gravitino Open API](./api/rest/gravitino-rest-api): provides the complete Open API definition of

diff --git a/docs/security.md b/docs/security.md