Changes between Version 1 and Version 2 of NewAPI


Ignore:
Timestamp:
Jun 18, 2013 2:10:21 PM (11 years ago)
Author:
faber
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • NewAPI

    v1 v2  
    3737  * binary/opaque
    3838  * lists of any of the above
     39 * value(s) of the element
    3940 * a flag set if the element is optional
    4041 * a modification type: elements may be read/write, read-only (e.g., username) or write-only (e.g., password)
    4142 * a brief description of the field, intended to be presented by a web interface or other third party program
    4243
     44The interfaces to manipulate a profile are
     45
     46 * '''GetProfileDescription'''
     47   * No input required
     48   * Returns a set of empty elements that this testbed understands and requires, represented as above
     49 * '''GetUserProfile'''
     50   * No input required execpt an authenticated user
     51   * Returns a populated set of elements containing the current values of the user's profile
     52 * '''SetUserProfile'''
     53   * A list of populated elements that the (authenticated) user wishes to change in the current profile
     54   * A list of the elements successfully updated, and a list of those that failed with a reason for each
     55
     56
    4357=== Authenticating as a User ===
    4458
    45 A user represnts themself to the testbed by presenting proof that they hold a public key, for example through an SSL connection.  The testbed determines what operations a user can carry out based on an ABAC-encoded policy that grants rights to users and binds keys to users.  A user is issued a public key periodically by DETER, but also can request a short lived temporary key at any time by authenticating against a shared password.
     59A user represnts themself to the testbed by presenting proof that they hold a public key, for example through an SSL connection.  The testbed determines what operations a user can carry out based on an ABAC-encoded policy that grants rights to users and binds keys to users.  A user is issued a public key periodically by DETER, but also can request a short lived temporary key at any time by authenticating against a shared password.  A temporary key is useful to allow a web application or other hosted tool to act on a user's behalf.
     60