IETF Logo Mail Archive

[scim] New revision of draft-zollner-scim-roles-entitlements-extension published

Danny Zollner <Danny.Zollner@microsoft.com> Wed, 27 July 2022 21:52 UTC

Return-Path: <Danny.Zollner@microsoft.com>
X-Original-To: scim@ietfa.amsl.com
Delivered-To: scim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 25D26C13CCE5 for <scim@ietfa.amsl.com>; Wed, 27 Jul 2022 14:52:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.688
X-Spam-Level:
X-Spam-Status: No, score=-7.688 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.582, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yjWySm2XxOaz for <scim@ietfa.amsl.com>; Wed, 27 Jul 2022 14:51:58 -0700 (PDT)
Received: from na01-obe.outbound.protection.outlook.com (mail-centralusazon11021026.outbound.protection.outlook.com [52.101.62.26]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2AE6EC147920 for <scim@ietf.org>; Wed, 27 Jul 2022 14:51:57 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=YymKAXGrp/oX/3YPn74HyMn/HlqnT7rQ5UkefTP4HOgSktbCWVEHWSw8QL1qPiXIWpEpNKJzUNH9RjmQ1E/MAUVMUk4b4lr/90Nxa2stp82Whxs5Tv63ZMDthkT+8Eqs9Ml7Tgb/1ZXDfxJaRt5tQz232lcDvDzbJASWd/6xkOphhjtqor23OjjpQFGfaVEimMxQ5zlKR3wHQgUD/YialpyWosI6HZ5L1NSlRQSFL0RTtSV0Y1SlKFtONqi7vkYVLgCn6OoCA+M/LJjSbPFXswTk6Y6gLdKr/WK7jHZLsjjOYWIABRsWEQF17yFf/KZm9BzNxbqDXnsEZ1EQH8y5uA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=1ix1mlSXH2VvFaXccAHS195JhtVF33QhmiaBTPxNnZY=; b=BWRi8TSjtHEb9bqWlfxoEOr5o4F2XxlArnWYWBz2I6qK1h6D+C8+OqCBZiTu6g+4Ji0KSm9oE0moXwFyOsqvWPQip2yzNPfIOdq2E2eIBRdPEQlfgxyJHkNj3JOqRXF7GcidQC5GWSsd0PutJLYyf7RgRiv49rwFLk2patdJ2lpo4z0vSFrrVQSc7ni5fXFHV6UrRTK1Wdn3VWVDC+mVTZheV+IJzSTgltZ3uwmWQ6MIaPbujjway7FRx+ghzBZzkqbesO/4RtVVSyWp/eNc22fJgtEO/9X7KM8NELisIJi1ARBFVT2lOUWTj6iolZw6UkjRYHOTDz1ENwry8QxKBQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1ix1mlSXH2VvFaXccAHS195JhtVF33QhmiaBTPxNnZY=; b=YxjA0yqyZnneFQpf48ji4Aixm8ZBBjLjIerKiH5+JMEis1cEoyv1U3WE5UbOmrUj+B1Z9R523FXXTSKSjuNoUCu+zc9NCElVB53cG3UAKI/C5+Gs/YZ1eJkfhJ+2ImB5EHH2aPkD9kaT93KvEDlNrUDsRXw7P1h4qTf8e3EQG8M=
Received: from CH2PR00MB0710.namprd00.prod.outlook.com (2603:10b6:610:a9::24) by BY5PR00MB0838.namprd00.prod.outlook.com (2603:10b6:a03:1d8::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5513.0; Wed, 27 Jul 2022 21:51:30 +0000
Received: from CH2PR00MB0710.namprd00.prod.outlook.com ([fe80::6d68:e31c:fbea:646]) by CH2PR00MB0710.namprd00.prod.outlook.com ([fe80::6d68:e31c:fbea:646%5]) with mapi id 15.20.5519.000; Wed, 27 Jul 2022 21:51:30 +0000
From: Danny Zollner <Danny.Zollner@microsoft.com>
To: "scim@ietf.org" <scim@ietf.org>
Thread-Topic: New revision of draft-zollner-scim-roles-entitlements-extension published
Thread-Index: Adih/spnE/uFaVHRSNy1X+YxWML9hg==
Date: Wed, 27 Jul 2022 21:51:30 +0000
Message-ID: <CH2PR00MB0710E24809532592B207B907FF979@CH2PR00MB0710.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2022-07-27T21:20:49Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=c565b652-3877-4455-bde2-392a8dfa7bcf; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 187eabf8-0c1b-48ce-532a-08da701a2a50
x-ms-traffictypediagnostic: BY5PR00MB0838:EE_
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH2PR00MB0710.namprd00.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(4636009)(136003)(346002)(376002)(366004)(39860400002)(396003)(451199009)(38070700005)(166002)(82950400001)(82960400001)(6916009)(6506007)(2906002)(86362001)(7696005)(10290500003)(122000001)(55016003)(4744005)(66446008)(71200400001)(8936002)(64756008)(8676002)(8990500004)(186003)(76116006)(66556008)(66476007)(66946007)(9686003)(5660300002)(316002)(41300700001)(38100700002)(33656002)(52536014)(966005)(478600001)(83380400001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: P9jbYCKO5KC/kGNi1QkdPfS7Tvch9IbV9WO0lgTd3QPdpDCwRGDK8CkFPooJSRKBkDV/dgKIfzNPv3hYfVrSDPQkZmgPYfFsub4c4biBcxgzpxkgf/wTJDTZa2GEVxOqbX7/GHf8wtjY5jMeCn0ddh/fQrpOhgg7qvjkD0gkhV7hHO5OaXLlj4QV5RwogiHnUV9NAayCKZUAlUjQjZ+y513JpKMyd9qpW9lZSRTXIrdNb6lHn5YUB2DZPl2Ly6RmYP9dO7p4aVUGhHApk+Sxd+YT44qjiN+xEh3Tu2W6tVtTcrLVUXP0HHp0VggjZo5FSR0bUyZr9qnJzVm2wAoFqXi2TIGcnv3xV9Vd/1IFc3VVPiOg9yZ7JZ7MagESFxThyPdIO9wRd8p1eopaUHukb/aLzwdeCRHbXFDr/XFjBNziKb/60GtYFr1Y9OAtoc8gTJcFdGaBhsQh+sU7dS0Uj+uYLKfeAcQ6jgh+7F43TauCrI9IMEV6Vb9qex7d/89tMtawW3k93wZGVx68ozjV8wSt4rLEJRY7ME+R7kZ39g0VuJDGiZcc1bqAEridkPAKmpcM0a0Yu/aaGCGaNSsYffYN/JyRF8pLXnxmSkQhmx1/GrGwxdkP5VxUFJpKIsb+Mi+EF4/FhSRblan/09QWFA4pctx/2r3+qZv0yghenDUzlVxblkYHNXYni3SQUUlBLWMo1xu2ZCKkh/KbUTtS1jh2z/woBltmlQNNJ/NbLCSEoviYj3G8V0GSRVgGFfLMMCS2XEN+mXxEs58RYcT/Tkr7dk1o/JXg+u27Sc0F7gyPIuG0SWwEdJMXsH6owiyQjtV4rkbiw8i9pdNzKAuYvMYgUmfsfOEzDz2aLY0uqo9ouHKivprDXkOBT+vrQ+/SBZgo1WXzHZjJFlA83GuiHma8PEKMDYCPTrM4p32ef2J0jXf4JXXlQ4RLtSqevK8FX7C/xSf5ZaIsE7pYMb6IVZaU1/bVA16uxtRnTNt2v8GFBcU4mtOrruvof3qT+u38NY/FiAwg6MHdcylFi4zTSEPw9If9i/XRBZxvAKZ0484vWyPwAv5SNHNtryktoC3QCSuAc4u5VJjFeUhvBCccO3v6N1j1No9tB10MIsK4UzQPXf1HMJ5/Mtx6DfPcYh7uEOkioMX9TT4BNty9W42hhNqWRnPk1TnN8W+vhMs9YbFbN6dkHLNsdQ0CzRpDlNU6FADLxz8ImLqad0Js0n1A/5LkT61pnbnjiea0j2CmS+1SwhofP4cEtKFPDNxzMQZC7129tA8dVjbvSlveDNnway2xJNw+hAs2PvZ3VHSdAT2ojey7sDkqz2rK+2zH+G/BRS3KHKpp3GVMYSzWTyVP+7fPr7btgkmVUtx9w/yqP4ZlaqaKdhRx6oi6edZn1kFiLad4V2G1cnRCUFMY+0/8hgfvlaxMHHtGVjpXWIE0fZXkLAccTJ0nB+dm05iBT/9B4S16egGfIxSfgvnp/Zcw/bsPaso+leaT6QpTbVCVis+SigYOMg8edbMQPmV3+h/qPKfiobt5yGD6FOf+iBTBhbLkJVfBgxWtbjdDxR8lTV66c0te3yJVpLs3/6x2FCa+5yBOYce0kXt4IoLFQXTYaRO+DNRysABmMMvLeDGxcDafStaobr3E0/2Gb9S7AUFF
Content-Type: multipart/alternative; boundary="_000_CH2PR00MB0710E24809532592B207B907FF979CH2PR00MB0710namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY5PR00MB0838
Archived-At: <https://mailarchive.ietf.org/arch/msg/scim/pgJStA1slrEV2W9bch98eqHMGhc>
Subject: [scim] New revision of draft-zollner-scim-roles-entitlements-extension published
X-BeenThere: scim@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Simple Cloud Identity Management BOF <scim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/scim>, <mailto:scim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/scim/>
List-Post: <mailto:scim@ietf.org>
List-Help: <mailto:scim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/scim>, <mailto:scim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Jul 2022 21:52:02 -0000

Hi everyone,

I am writing to inform you that I've published a new version of my roles and entitlements extension. It is located here: https://datatracker.ietf.org/doc/html/draft-zollner-scim-roles-entitlements-extension-02. The major updates are:


  *   New attributes - contains, containedBy, limitedAssignmentsPermitted, totalAssignmentsPermitted, totalAssignmentsUsed
  *   Expanded examples and some minor syntactical corrections in examples.

contains and containedBy align with the discussion last month on the mailing list surrounding representation of role and entitlement hierarchy/permission and license structure. The assignments attributes address the use case of roles or entitlements that have a limited number of assignments available, specifically measured in a "seats" manner - i.e.: Only 1000 users may have the role X.

I kindly request review and feedback on this. I'd like to put this up for a call for adoption on the mailing list next month.

Thank you,

Danny Zollner

v2.23.0 | Report a Bug | By Email