...
This may begin with prose, and expand into something like a project plan at some point. This need not be a complete schedule, but it will make sense to include the steps and approaches, milestones, etc.
Dependencies
...
As mentioned in the Nuxeo Analysis and the discussion of Nuxeo Issues, the Nuxeo framework incorporates support for authentication (AuthN) and authorization (AuthZ).
As a minor form of advance preparation for the possibility, however remote, that the Services Team may encounter issues - such as documentation shortcomings, implementation difficulties, or missing capabilities - in this support, one widely and favorably discussed alternative in the Java security frameworks space appears to be:
...
In addition to JSecurity, Spring Security (formerly Acegi Security), and jGuard (built on Java's core JAAS) are among other, similar third-party Java security frameworks that appear to have received considerable mention. With all of these frameworks, a generic concern is how they might be made to serve as a replacement for Nuxeo's integral security support.
Test Plan
This should describe how the new service implementation will be tested. The testing here could include white box style test, unit test, and/or integration tests.
...