Building RS ~ AS Trust With UMA

From IIW
Jump to: navigation, search

Session Topic: AS<-> Trust in UMA

Tuesday 4I

Convener: Maceij Machulak, Eve Maler

Notes-taker: Eve Maler

Discussion notes, key understandings, outstanding questions, observations, and, if appropriate to this discussion: action items, next steps:


We reviewed this UMA-related spec module:

http://docs.kantarainitiative.org/uma/draft-oauth-resource-reg.html


...and went through this introductory slide deck:


http://kantarainitiative.org/confluence/download/attachments/17760302/UMA%20101%20at%20IIW.pdf?api=v2


We discussed questions and comments centering on how an authorization server would handle registrations of ten thousand resources for users managed within, say, a corporate system. Currently it would expect each unique resource "owned" by each individual user to be registered separately. This and other patterns could be optimized in various ways in future.