OASIS eXtensible Access Control Markup Language (XACML) TC

 View Only
  • 1.  XACML REST profile -- mandatory vs optional

    Posted 05-22-2012 16:00
    Hi all, Given the current mandatory vs optional part of the XACML REST profile draft: Identifier M/O urn:oasis:names:tc:xacml:3.0:profile:rest:service M urn:oasis:names:tc:xacml:3.0:profile:rest:pdp M urn:oasis:names:tc:xacml:3.0:profile:rest:pap O It seems like there is no provision for a pure policy management endpoint; that is one that exposes the PAP profile but has no available PDP. Is this by design? Regards, Craig ------- craig forster technical lead, tivoli security policy manager cforster@us.ibm.com -------


  • 2.  RE: [xacml] XACML REST profile -- mandatory vs optional

    Posted 05-23-2012 07:20
    Craig, From: xacml@lists.oasis-open.org [ mailto:xacml@lists.oasis-open.org ] On Behalf Of Craig R Forster Sent: Tuesday, May 22, 2012 5:59 PM To: xacml@lists.oasis-open.org Subject: [xacml] XACML REST profile -- mandatory vs optional > It seems like there is no provision for a pure policy management endpoint; that is one that exposes the PAP profile but has no available PDP. Is this by design? It is, although I'd be happy to change it. I just haven't seen the interest. Thanks, Ray