...
Table I: Atomic functionality required to implement a white pages editing and delivery tool with their composition under two different models:
Step | Name | Relevant actors or components in SAML model | Relevant actors or components in UMA model |
---|---|---|---|
1 | Request to edit one's own protected White Page (WP) information | Person A as end user --> WP Editing App behind SAML SP | Person A as end user --> WP Client App on Resource Server (RS) |
2 | Challenge for Identity | AuthN Service fronting SAML IdP --> Person A as end user | Authorization Server (AS) protecting RS --> Person A as end user |
3 | Claim Identity | Person A as end user --> AuthN Service fronting SAML IdP | Person A as Resource Owner --> Authorization Server (AS) protecting RS |
4 | Verify Claimed Identity | Authentication Service fronting SAML IdP --> Person A as end user | AS protecting RS --> Person A as Resource Owner (RO) |
5 | Grant Authorization to edit WP Information | WP Editing App behind SAML SP --> Person A as end user | AS protecting RS --> Person A as RO |
6 | Edit WP Information | Person A as end user --> WP Editing App behind SAML SP | Person A as RO --> WP Client App on RS |
7 | Set Access Policy for WP Information | Person A as end user(Done on behalf of Person A by IdP admin per attribute release policy) | Person A as RO --> AS |
8 | Persist Access Policy for WP Information | SAML Attribute Release Config Files | Authorization ServerAS |
9 | Make WP Information Available Online | WP App | Resource Server |
10 | Discover White Pages for given user | Person B as end user | Service Registration; Person B as Requesting Party |
11 | Search/Find Person WP Information | Person B as end user | Person B as Requesting Party |
12 | Request Authorization for WP Information Access | Person B as end user | Person B as Requesting Party |
13 |
| ||
14 | Grant Authorization for WP Information Access per Policy | WP App behind SAML SP | Authorization Server |
15 | Show WP Information | WP App | Resource Server or a Client of Resource Server |
...