Uploaded image for project: 'GPII - Global Public Inclusive Infrastructure'
  1. GPII - Global Public Inclusive Infrastructure
  2. GPII-3717

Enhance logon procedure to allow signalling of requests from NOVA

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None

      Description

      Work for GPII-3711 requires an improvement to the current OAuth grant type based on the enhanced data model:

      • /access_token handler:
        1. verify ip range;
      • /settings GET handler:
        1. if the incoming access token is linked with a client credential that has the creation power, return an empty object for preferences;
        2. if the incoming access token is linked with a client credential that the creation is not allowed, reject the request with an error.
      • /settings PUT handler:
        1. if the incoming access token is linked with a client credential that has the creation power:
        (1) verify the incoming preferences for write/update are allowed, if any one preference is not allowed, reject the request with an error;
        (2) if the GPII key is not exist, create the key and its prefs safe
        (3) if the GPII key already exists, update the prefs safe
        2. if the incoming access token is linked with a client credential that the creation is not allowed, only the update to the prefs safe is allowed.

        Attachments

          Activity

            People

            • Assignee:
              cli@ocad.ca Cindy Qi Li
              Reporter:
              amb26 Antranig Basman
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: