...
- Consider broadening authorizing user to authorizing party if we want not to preclude these use cases in future.
- Consider revising "host service user" (depends on custodianship discussion).
An
authorizing user is a web user (a natural person) who uses a user agent (as defined in [
HTTP]) to configure an
AM with access authorization
policies and
terms, in order to instruct it how to make access decisions when a
requester attempts to access a
protected resource on a
host. An authorizing user is the sole party capable of dictating
access authorization terms to a
requesting party in the context of an UMA-based interaction.
...
A
host service is a
host application that is deployed on a network. The legal or natural person(s) who run a host service are intermediaries that are not involved in stating
access authorization terms or making
representations.
A
Anchor |
---|
| hostprimary-serviceresource-userhost |
---|
| primary-serviceresource-user |
---|
|
host service primary resource user is a web user (a natural person) who
interacts uses a user agent (as defined in [HTTP]) to interact with a
host service in order to use
and configure it for resource hosting.
In general, a user of a host service is The primary resource user may be identical to the
authorizing user of the same
resources resource at that host,
but in special cases or they they may be different people.
...