forked from mrtopf/UMA-Specifications
-
Notifications
You must be signed in to change notification settings - Fork 21
Issues: KantaraInitiative/wg-uma
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
register the "UMA" auth scheme with IANA
grant
Related to UMA2 Grant
V2.0
#362
opened Aug 26, 2019 by
xmlgrrl
Need to edit Grant and FedAuthz specs to reflect that OAuth AS metadata spec is final
fedauthz
Related to UMA2 Federated Authorization
grant
Related to UMA2 Grant
#361
opened Jul 11, 2018 by
xmlgrrl
Typo in Grant 2.0
editorial
Related to non-normative text errors
grant
Related to UMA2 Grant
#360
opened Apr 12, 2018 by
xmlgrrl
Make the permission ticket optional when "upgrading" the RPT for an UMA-native refresh flow
extension
Idea that may be suitable for an extension spec or UMA Request For Enhancement
grant
Related to UMA2 Grant
#353
opened Aug 24, 2017 by
xmlgrrl
Use OpenAPI format for Resource Registration
extension
Idea that may be suitable for an extension spec or UMA Request For Enhancement
fedauthz
Related to UMA2 Federated Authorization
#288
opened Mar 2, 2017 by
nynymike
UMA does not facilitate chatter reduction at the RS
extension
Idea that may be suitable for an extension spec or UMA Request For Enhancement
#282
opened Feb 23, 2017 by
mrpotes
Resource Registration Document: 'uri' should be an array / examples
extension
Idea that may be suitable for an extension spec or UMA Request For Enhancement
rsrc-reg
Related to resource registration (or the original UMA1 resource reg spec)
#270
opened Jan 10, 2017 by
nynymike
What to do with/about extensibility profiles?
core
Related to (original UMA1) core spec scope; may use obsolete language
extension
Idea that may be suitable for an extension spec or UMA Request For Enhancement
#267
opened Jan 5, 2017 by
xmlgrrl
Cascading authorization servers
core
Related to (original UMA1) core spec scope; may use obsolete language
extension
Idea that may be suitable for an extension spec or UMA Request For Enhancement
fedauthz
Related to UMA2 Federated Authorization
policymgr
Policy Manager extension
ROctrl
Related to enabling the RO to exert/retain control over resource access
RSctrl
Related to enabling the RS to exert/retain control over resource access
#260
opened Dec 22, 2016 by
xmlgrrl
The AS as an agent of the Resource Subject (data subject)
ROctrl
Related to enabling the RO to exert/retain control over resource access
trust
Business-legal-technical (BLT) trust
#258
opened Oct 7, 2016 by
agropper
Hashed claims discovery
core
Related to (original UMA1) core spec scope; may use obsolete language
extension
Idea that may be suitable for an extension spec or UMA Request For Enhancement
#254
opened May 26, 2016 by
jricher
Endpoint for collection of "receipts" and notifications of RS action in case of extraordinary behavior
extension
Idea that may be suitable for an extension spec or UMA Request For Enhancement
policymgr
Policy Manager extension
ROctrl
Related to enabling the RO to exert/retain control over resource access
RSctrl
Related to enabling the RS to exert/retain control over resource access
shoebox
Related to consent/personal data receipt API ideas
trust
Business-legal-technical (BLT) trust
#246
opened Feb 26, 2016 by
xmlgrrl
Location Constraints
extension
Idea that may be suitable for an extension spec or UMA Request For Enhancement
RSctrl
Related to enabling the RS to exert/retain control over resource access
shoebox
Related to consent/personal data receipt API ideas
trust
Business-legal-technical (BLT) trust
#245
opened Feb 5, 2016 by
PrivacyCDN
Consider distinguishing between delegatable and nondelegatable rights and responsibilities (possibly leveraging CARAT)
trust
Business-legal-technical (BLT) trust
#244
opened Jan 29, 2016 by
xmlgrrl
Develop model clauses to mandate production of notification in extraordinary cases
ROctrl
Related to enabling the RO to exert/retain control over resource access
trust
Business-legal-technical (BLT) trust
#242
opened Jan 29, 2016 by
xmlgrrl
Breaking down clause conditions so that each duty has only two parties
trust
Business-legal-technical (BLT) trust
#241
opened Jan 29, 2016 by
xmlgrrl
RS Notifies AS or RO of Access
extension
Idea that may be suitable for an extension spec or UMA Request For Enhancement
ROctrl
Related to enabling the RO to exert/retain control over resource access
RSctrl
Related to enabling the RS to exert/retain control over resource access
shoebox
Related to consent/personal data receipt API ideas
#224
opened Sep 8, 2015 by
agropper
Have an API to let an RS register the user’s sharing preferences/policies directly
rsrc-reg
Related to resource registration (or the original UMA1 resource reg spec)
#106
opened Aug 27, 2014 by
xmlgrrl
XACML-style Obligations that the AS imposes on the RS
core
Related to (original UMA1) core spec scope; may use obsolete language
#102
opened Aug 7, 2014 by
xmlgrrl
Make it possible to apply the protections of multiple AS permissions over a single resource set at the RS
APIsec
Related to API security use cases
core
Related to (original UMA1) core spec scope; may use obsolete language
fedauthz
Related to UMA2 Federated Authorization
#95
opened Jul 28, 2014 by
xmlgrrl
Make authorization_code grant type MTI for PATs and AATs again?
core
Related to (original UMA1) core spec scope; may use obsolete language
#91
opened Apr 14, 2014 by
xmlgrrl
Ensure resource server only outsources protection for the RO's legitimate resources
core
Related to (original UMA1) core spec scope; may use obsolete language
#83
opened Jun 5, 2013 by
xmlgrrl
Host metadata pull
core
Related to (original UMA1) core spec scope; may use obsolete language
#74
opened Dec 7, 2012 by
xmlgrrl
Previous Next
ProTip!
Mix and match filters to narrow down what you’re looking for.