Want to know if collaborative work on User-Managed Access is for you? Check out the group's charter document! The next phase of our efforts involves four prongs: 1) spec enhancements (such as extensions); 2) business model (aka "UMA Legal") work; 3) promoting adoption; and 4) promoting interop. If any of these could accelerate your own efforts, join us!
TheUMA 2.0 Grant for OAuth 2.0 Authorization and Federated Authorization for UMA 2.0 Recommendationscan be downloaded at the Kantara Reports & Recommendations page. Need to cite or deep-link? Find HTML versions here: UMA2 Grant Recommendation, UMA2 Federated Authorization Recommendation. And check out the draft UMA Business Model report.Many resources to understand more about UMA are available.
We are undertaking some important new work on an UMA "policy manager" extension, and more. You can check it out by reading our Meetings and Minutes, and if you're interested to contribute, be sure to click our Join link above! ⬆︎
Here are the UMA Grant (PDF, HTML for deep linking) and UMA Federated Authorization Recommendations (PDF, HTML for deep linking). Don't miss the UMA2 masterclass delivered by two UMAnitarians at the Identiverse conference in Boston in June 2018 (slides and video). (The slides and video from the previous year's Authorization: Age of UMA session set in the Marvel Cinematic Universe was also a big hit!) The Release Notes are up to date with review all final UMA1-to-UMA2 changes. See also the UMA Implementer's Guide, our list of known Implementations, and discussions of Case Studies, all of which continue to grow. Finally, see the detailed UMA Grant sequence diagram and FedAuthz sequence diagram.