Want to know if collaborative work on User-Managed Access is for you? Check out the group's charter document! The next phase of our efforts involves four prongs: 1) spec enhancements (such as extensions); 2) business model (aka "UMA Legal") work; 3) promoting adoption; and 4) promoting interop. If any of these could accelerate your own efforts, join us!
TheUMA 2.0 Grant for OAuth 2.0 Authorization (UMA Grant rev 05) and Federated Authorization for UMA 2.0 (FedAuthz rev 05). To comment, please email your comments to firstname.lastname@example.org with the subject "UMAWG COMMENT SUBMISSION". For details about this period, see the Kantara announcement.Resources Recommendationscan be downloaded at the Kantara Reports & Recommendations page. Need to cite or deep-link? Find HTML versions here: Grant, FedAuthz.
Many resources to understand more about UMA are available and growing. For example, especially if you're familiar with UMA V1, check out this detailed swimlane to get the broad strokes of what has changed. We're fleshing out the Release Notes, updating the . Don't miss the slides and video from Authorization: Age of UMA, the "Introducing UMA 2.0" session delivered by two UMA coauthors at the Chicago Cloud Identity Summit. The Release Notes are up to date with all spec changes through the first Public Comment period. See also the UMA Implementer's Guide, and attending to similar tasks around the site. Also see these UMA Grant and FedAuthz sequence diagrams. If you're interested to help, we invite you to join the group! Fill out the Group Participation Agreement form to get going.
Two members of our Work Group premiered UMA 2.0 at the recent Cloud Identity Summit 2017. When the presentation video is available online, we'll link it here. You won't want to miss it. It was Marvellous.
our list of known Implementations, and discussions of Case Studies, all of which continue to grow. Finally, see the UMA Grant sequence diagram and FedAuthz sequence diagram.