OASIS eXtensible Access Control Markup Language (XACML) TC

 View Only

a first proposal to address issue number 19.

  • 1.  a first proposal to address issue number 19.

    Posted 11-18-2009 20:07
    
    
    
    
    
    
    
    
    
    
    

    Hi all,

    Below a first proposal to address issue number 19.

    Proposal:

    In the xml use case only, a multiple resource decision request will have next to the scope attribute an additional attribute called “

    urn….:node-type”

    with values like {element-node, attribute-node, text-node and maybe for completeness reasons ?comment-node, ? processing-instruction-node?}.

    Further (not directly related) comment:

    In an earlier mail somebody mentioned that it might make sense to put the derived individual resource-id values in a separate attribute (e.g. derived-resource-id) and not overriding the original resource-id value. I am not sure whether this is a good|bad idea but we should kept it in mind and maybe look for pros and cons of doing this.

    Best regards

    jan

    ________________________________________

    Jan Herrmann
    Dipl.-Inform., Dipl.-Geogr. 

    wissenschaftlicher Mitarbeiter

    Technische Universität München
    Institut für Informatik

    Lehrstuhl für Angewandte Informatik / Kooperative Systeme

    Boltzmannstr. 3
    85748 Garching

    Tel:      +49 (0)89 289-18692
    Fax:     +49 (0)89 289-18657

    Raum:
    www11.informatik.tu-muenchen.de
    ________________________________________