RedHat's KeyCloak open (also at @Keycloak) open
-source authorization services offering supports UMA2
, targeting primarily enterprise use cases (where "the RS is the RO" – the enterprise hosts the resources, and also serves as its own authorization server). Except for the interactive claims gathering flow, most of the specification is implemented, including resource registration. A simple example app (photoz) using UMA is provided
. The protection API has been extended
to include a new endpoint to manage user permissions (policies). This was a result of contributions from the community in order allow RSs to associate/manage custom policies for resources while still letting users manage them. Another extension allows
the RS to push claims when creating a permission ticket. (See more discussion of this extension in this thread
WSO2 Open-source company WSO2 (also at @WSO2) has implemented UMA2 in its Identity Server 4.7.0 product. A demonstration recording is available.
In 2016 the company Jericho Systems announced a product, EnterSpace 9, with UMA support as follow-on to its Consentral on FHIR product.