[GNAP] Enterprise servers and Internet servers use cases
Denis <denis.ietf@free.fr> Tue, 18 August 2020 10:22 UTC
Return-Path: <denis.ietf@free.fr>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 389F73A07F6 for <txauth@ietfa.amsl.com>; Tue, 18 Aug 2020 03:22:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.312
X-Spam-Level:
X-Spam-Status: No, score=0.312 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, KHOP_HELO_FCRDNS=0.212, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, SPOOFED_FREEMAIL=1.997] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7ipyljfcueXQ for <txauth@ietfa.amsl.com>; Tue, 18 Aug 2020 03:22:21 -0700 (PDT)
Received: from smtp.smtpout.orange.fr (smtp08.smtpout.orange.fr [80.12.242.130]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E9E7D3A07EC for <txauth@ietf.org>; Tue, 18 Aug 2020 03:22:20 -0700 (PDT)
Received: from [192.168.1.11] ([90.79.51.120]) by mwinf5d67 with ME id GyNH2300P2bcEcA03yNJpa; Tue, 18 Aug 2020 12:22:19 +0200
X-ME-Helo: [192.168.1.11]
X-ME-Auth: ZGVuaXMucGlua2FzQG9yYW5nZS5mcg==
X-ME-Date: Tue, 18 Aug 2020 12:22:19 +0200
X-ME-IP: 90.79.51.120
To: "txauth@ietf.org" <txauth@ietf.org>
From: Denis <denis.ietf@free.fr>
Message-ID: <94edca87-ee06-566e-a71a-d6a902ee2684@free.fr>
Date: Tue, 18 Aug 2020 12:22:15 +0200
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.9.0
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="------------760637E3710E2C672C191D5E"
Content-Language: en-GB
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/d76q2AjrKSf0lm41AORkNrwVvE4>
Subject: [GNAP] Enterprise servers and Internet servers use cases
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Aug 2020 10:22:23 -0000
Hello, I have posted a new use case (unfortunately as usual for me in the wrong directory) under the name: * Enterprise servers and Internet servers use cases*. It is available from: https://github.com/ietf-wg-gnap/general/wiki/Enterprise-servers-and-Internet-servers-use-cases At the end of this paper, I have summarized the terminology used in this paper. * User : human person * individual client : application that requests access tokens on behalf of a User * User Agent : User Interface associated with an individual client that manages the User Consent and choices * enterprise client: application that requests access tokens on behalf of the application * attribute: characteristic of a User or of an Application * capability: pair of elements granted by an AS that indicates which method is allowed on which data object * Attribute-based Access Control (ABAC): access control scheme based on a policy that uses one or more attributes to grant or to deny an operation * User access token: access token that contains attributes related to the User or /and capabilities granted to the User * application access token: access token that contains attributes related to the application or /and capabilities granted to an enterprise client application Denis PS. If some one could post a message explaining how to place a use case in the right directory, it might be useful for a next time. :-)