[WG-InfoSharing] Clarifying Scope field for MVCR
jricher at mit.edu
Thu Mar 24 07:40:44 CDT 2016
These are taken from OAuth, and represent one aspect of data access
that's been requested by the service. As it says below, it's a string
that represents "what the subject of the receipt is allowed to do". In
the case where you're doing an actual OAuth or UMA transaction, it makes
sense to simply copy the "scope" value from that straight through. If
you're not, it's still a valuable field as it can help describe the
nature of the receipt itself.
On 3/24/2016 7:39 AM, Mark Lizar - OCG wrote:
> Hi Justin,
> I am reviewing/revising the specification with all of the input and
> issues raised. Is it possible to clarify what the scopes field is and
> where/how it fits into the specification.
> I am not quite clear on how this would be used and when. Could you
> help clarify this with a small example ?
> i.e. what would read/update be in reference too? (found at
> api.consentreceipt.org/doc/ <http://api.consentreceipt.org/doc/> )
> |scopes| string. space separated string values What you’re allowed
> to do on the service (these can be tied to legal / business /
> technical layers) |read update|
> WG-InfoSharing mailing list
> WG-InfoSharing at kantarainitiative.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the WG-InfoSharing