Submitter's message I've added an example policy for enforcing an SoD constraint that a purchase order must be approved by someone other than the person who raises it. I will add some example requests and responses to show how it works in the next draft. -- Dr. Steven Legg Document Name : XACML v3.0 Separation of Duties Version 1.0 Description This specification defines a method for supporting separation of duties within XACML policies using obligations and allowing the full generality of attribute-based access control. In particular, duties are not required to be associated with subject roles. Download Latest Revision Public Download Link Submitter : Dr. Steven Legg Group : OASIS eXtensible Access Control Markup Language (XACML) TC Folder : Specifications and Working Drafts Date submitted : 2022-10-11 23:43:50 Revision : 1