Guidelines for expressing group membership and role information (AARC-G069)
Ardizzone, Valeria; Bučík, Dominik František; Hardt, Marcus
1; Helmert, Stefan; Jensen, Jens; Kanakarakis, Ivan; Kanellopoulos, Christos; Liampotis, Nicolas; Linden, Mikael; Sallé, Mischa
1 Scientific Computing Center (SCC), Karlsruher Institut für Technologie (KIT)
1; Helmert, Stefan; Jensen, Jens; Kanakarakis, Ivan; Kanellopoulos, Christos; Liampotis, Nicolas; Linden, Mikael; Sallé, Mischa1 Scientific Computing Center (SCC), Karlsruher Institut für Technologie (KIT)
Abstract:
Information about the groups a user is a member of is commonly used by relying parties in order to authorise user access to protected resources. This document provides guidelines for expressing group membership and role information across AARC BPA-compliant AAI services. Specifically, it defines a URN namespace for expressing this information using common identity federation protocols, namely SAML and OpenID Connect/OAuth2.
| Zugehörige Institution(en) am KIT | Scientific Computing Center (SCC) |
| Publikationstyp | Forschungsbericht/Preprint |
| Publikationsdatum | 11.04.2022 |
| Sprache | Englisch |
| Identifikator | KITopen-ID: 1000152911 |
| HGF-Programm | 46.21.02 (POF IV, LK 01) Cross-Domain ATMLs and Research Groups |
| Weitere HGF-Programme | 46.21.03 (POF IV, LK 01) HIFIS |
| Verlag | Zenodo |
| Umfang | 14 S. |
| Serie | AARC Recommendations ; G069 |
| Externe Relationen | Siehe auch |
| Schlagwörter | AARC, Blueprint Architecture, Federated Authentication, Authentication, Authorisation |