[WG-UMA] New issue #110: Consider adding optional location URI property to resource set description

Eve Maler eve at xmlgrrl.com
Fri Oct 31 10:22:42 CDT 2014


Thanks for responding so quickly! Would you like to propose some spec text in this case, so people can see exactly what the property definition would look like, and judge on that basis?

	Eve

> On 31 Oct 2014, at 8:21 AM, Maciej Machulak <maciej.machulak at gmail.com> wrote:
> 
> Eve,
> 
> Just commented on GitHub. I think adding a location URI is a good idea. Cloud Identity already supports that in its UMA implementations and this was shown during the demo at IIW.
> 
> I am not sure about issues #20 and #31 - I will need to check them first.
> 
> Cheers, Maciej
> 
> On 31 October 2014 16:19, Eve Maler <eve at xmlgrrl.com <mailto:eve at xmlgrrl.com>> wrote:
> ...possibly enabling us to kill issues #20 and #31 as well.
> 
> https://github.com/xmlgrrl/UMA-Specifications/issues/110 <https://github.com/xmlgrrl/UMA-Specifications/issues/110>
> 
> "With a property like this, the RS can inform the AS of not just the abstract properties of a resource set, but a specific property as well: its location, which can help the AS in term inform others that want to know. This could be useful not just for an UMA AS, but also for an OpenID Connect OP in the use case identified in the RSR spec introduction [http://docs.kantarainitiative.org/uma/draft-oauth-resource-reg.html#rfc.section.1 <http://docs.kantarainitiative.org/uma/draft-oauth-resource-reg.html#rfc.section.1>], for feeding a distributed claims (or even aggregated claims) mechanism.
> 
> Nat and I discussed this while at IIW this week. It would be an extremely lightweight way to help solve an important portion of the personal discovery service challenge discussed in issue #20, as well as the resource "baskets" or "bundles" notion discussed in issue #31, because the application hosting the AS could also be an RS with a special "singular" UMA-protected resource set that consists of a set of pointers, OpenID Connect distributed claims-style (http://openid.net/specs/openid-connect-core-1_0.html#DistributedExample <http://openid.net/specs/openid-connect-core-1_0.html#DistributedExample>), to a variety of other OAuth-protected resource sets (possibly at multiple resource servers)."
> 
> Thoughts?
> 
>         Eve
> 
> Eve Maler                                  http://www.xmlgrrl.com/blog <http://www.xmlgrrl.com/blog>
> +1 425 345 6756 <tel:%2B1%20425%20345%206756>                         http://www.twitter.com/xmlgrrl <http://www.twitter.com/xmlgrrl>
> 
> _______________________________________________
> WG-UMA mailing list
> WG-UMA at kantarainitiative.org <mailto:WG-UMA at kantarainitiative.org>
> http://kantarainitiative.org/mailman/listinfo/wg-uma <http://kantarainitiative.org/mailman/listinfo/wg-uma>
> 
> 
> 
> -- 
> Maciej Machulak
> email: maciej.machulak at gmail.com <mailto:maciej.machulak at gmail.com>
> mobile: +44 7999 606 767 (UK)
> mobile: +48 602 45 31 66 (PL)


Eve Maler                                  http://www.xmlgrrl.com/blog
+1 425 345 6756                         http://www.twitter.com/xmlgrrl

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://kantarainitiative.org/pipermail/wg-uma/attachments/20141031/f9936317/attachment.html>


More information about the WG-UMA mailing list