You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In an access control model, the RO may be associated either with an AS or with the RS.
In the first case, the AS includes capabilities (i.e. a right on a resource) into an access token while
in the second case it includes user's attributes.
However, the document is currently allowing only the support of capabilities.
On page 25, the text states:
access (array of objects/strings) Describes the rights that the client instance is requesting for one or more access tokens to be used at RS’s. This field is REQUIRED.
flags is defined as a et of flags that indicate desired attributes or behavior to be attached to the access token by the AS.
However, in practice, flags it only indicate some desired behavior to be attached to the access token.
This means that a model where ACLs only would be used cannot be supported.
An additional field, called "attributes", should be supported, where types and optionally values of attributes can be specified.
The text was updated successfully, but these errors were encountered:
In an access control model, the RO may be associated either with an AS or with the RS.
In the first case, the AS includes capabilities (i.e. a right on a resource) into an access token while
in the second case it includes user's attributes.
However, the document is currently allowing only the support of capabilities.
On page 25, the text states:
However, in practice, flags it only indicate some desired behavior to be attached to the access token.
This means that a model where ACLs only would be used cannot be supported.
An additional field, called "attributes", should be supported, where types and optionally values of attributes can be specified.
The text was updated successfully, but these errors were encountered: