Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add resource set registration endpoint #601

Closed
njlie opened this issue Sep 13, 2022 · 3 comments
Closed

Add resource set registration endpoint #601

njlie opened this issue Sep 13, 2022 · 3 comments
Assignees
@njlie
Milestone
GNAP AS

Comments

@njlie
Copy link
Contributor

njlie commented Sep 13, 2022

  • POST /resource
  • RS should identify itself with a key rather than a string or a kid
  • Return instance_id that may be used to identify an RS instead of a key or by reference during token introspection.

https://datatracker.ietf.org/doc/html/draft-ietf-gnap-resource-servers#section-3.4
@njlie njlie added this to the GNAP AS milestone Sep 13, 2022
@njlie njlie mentioned this issue Sep 13, 2022
Closed
2 tasks
@wilsonianb
Copy link
Contributor

Would this mean:

  • the set of resources supported at the AS is dynamic
    or
  • custom subsets of a known set (Open Payments) resource can be enabled?

It seems like we'd have to strip out a lot from current AS for the former. And I'm not sure if/how our custom resource access limits are registered in either case.

@njlie
Copy link
Contributor Author

njlie commented Sep 20, 2022

I think what I envisioned strays closer to the latter. For our purposes we really only need this endpoint to allow an RS to acquire an identifier that points to a key the AS can use to authenticate signatures on an introspection request, so we could even forgo custom resource access limit registration entirely.

@njlie njlie self-assigned this Sep 20, 2022
@njlie njlie mentioned this issue Sep 22, 2022
Closed
4 tasks
@njlie
Copy link
Contributor Author

njlie commented Sep 26, 2022

Closing as a consequent of the reasoning in #576.

Closing for now due to AS-RS being in a trusted zone

@njlie njlie closed this as not planned Won't fix, can't repro, duplicate, stale Sep 26, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@njlie njlie

Labels
None yet
Projects
None yet
Milestone
GNAP AS
Development

Successfully merging a pull request may close this issue.

feat(auth): add resource set service interledger/rafiki
2 participants
@wilsonianb @njlie