authzen

authzen copied to clipboard

Added the results for the Axiomatics PDP

1

Output of running the test script on the Axiomatics PDP hosted at https://alfa.pdp.guide

davidjbrossard

Added Axiomatics' endpoint to the list of AuthZEN PDPs

1

davidjbrossard

Minor editorial changes

1

adeinega

incorporated subject identifiers from RFC9493

2

tulshi

This merge seems to have broken the automatic building of the GitHub pages: https://github.com/openid/authzen/actions/runs/7891433299

tulshi

In the spec the error status reponses are specified: > 401 | Unauthorized | An error message string > 403 | Forbidden | An error message string Suggest clarifying that...

independentid

Sign access decision?

4

Should the access decision be signed by the PDP private key to ensure that the payload has not been tampered with?

eazerad

PDP may want to keep a stateful session between the PEP and PDP. Rationale: you could provide further input that would be used for the PDP to make a decision;...

eazerad

normativeness of "Common Actions"

3

"Common Actions" currently defines 4 CRUD and one generice "access" action. are those normative and mandatory for PDP/PEP spec compliance? How should a PDP response, in cases a common action...

tr33

PDP evaluation status

4

A PDP may involve third party components into policy evaluation as a sub-query, i.e. a Policy Information Point (PIP) which holds additional information about the resource/subjects relationships or other metadata...

tr33