Alex Babeanu

icon indicating a website link https://www.indykite.com icon indicating an email [email protected]

icon company Indykite icon location Canada icon location Lead Product Mgr @ Indykite

Results 7 comments of Alex Babeanu

specify type for subjects

see previous comment... I'd rather suggest `id` to be mandatory, any String, + add any attributes as needed, at the discretion of the implementers... Or else, then provide a list...

revise use of "ipAddress" for subjects

My only concerns about these Subject attributes is that they are geared towards human Subjects. A smart IoT device or a Web Service could also be Subjects. Seems to me...

normativeness of "Common Actions"

There are also "Custom Actions". https://github.com/openid/authzen/blob/main/authorization-api-1_0.md#custom-actions

Multi-Language Support: don't reply with all languages

I like this idea...

subject deviceId - unclear definition

This should be left as an open string imho, implementers should be able to use whatever string format here. The provided example has a Mac address, but this could easily...

Allowing a PDP to specify Application id in a multi-Application/PEP to PDP environment

I think these implementation-specific considerations shouldn't be in the standard. There's a variety of ways you could implement your authzen endpoint to support your needs. If we start adding implementation...

Could we (should we) simplify the Action Search API response?

Agreed too, array of string seems sufficient to me.