Auth scope changes#61
Open
RaggedStaff wants to merge 7 commits into
Open
Conversation
lecoqlibre
requested changes
Oct 7, 2025
lecoqlibre
left a comment
lecoqlibre
left a comment
Member
There was a problem hiding this comment.
This work is not aligned with our efforts to move closer to the Solid international consensus especially our previous work on the WebID. For me the DFC should rather move to Solid-OIDC.
If this solution is a transition and a temporary-only solution it should be noticed.
RaggedStaff
commented
Oct 23, 2025
RaggedStaff
commented
Oct 23, 2025
| | **Subject** | **Endpoints accessible with subject** | | ||
| | --- | --- | | ||
| | Enterprise | Enterprise, Address, SocialMedia, PhoneNumber, CustomerCategory, Coordination, Place | | ||
| | Product | TechnicalProduct, LocalizedProduct, SuppliedProduct, Catalog, CatalogItem, Offer, Price, Transformation, ConsumptionFlow, ProductionFlow | |
Contributor
Author
There was a problem hiding this comment.
Split Price/Offer
Contributor
Author
|
@simonLouvet requests:
|
RaggedStaff
commented
Oct 23, 2025
| @@ -0,0 +1,36 @@ | |||
| # Authorization Strategy | |||
RaggedStaff
commented
Oct 23, 2025
|
|
||
| Furthermore it is recommended that RP's implment a data consent system, whereby data owners can grant (and revoke) access to these scopes for individual clients/users within the OIDC domain. For example a portal wishing to read data on a users Enterprise and Products, might request `ReadEnterprise` and `ReadProduct` access. The RP should record which Enterprises have authorized a specific client or user to which scopes. | ||
|
|
||
| The DFC community provides a web component that can support RP's with this workflow: the [Data Sharing Module](https://github.com/startin-blox/data-sharing-module/) has full instructions on how to implment & manage scope permissions for users on your platform. |
Contributor
Author
There was a problem hiding this comment.
Clarify SiB (not part of DFC Community) built DPMfor Coopcircuits (are part of DFC Community)
Member
|
@lecoqlibre is there a documentation link/paragraph that we could add here to give info on how Solid-OIDC can answer permissions between users? |
lecoqlibre
approved these changes
Mar 31, 2026
lecoqlibre
left a comment
lecoqlibre
left a comment
Member
There was a problem hiding this comment.
OK. There is still work to do but can start with this.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
PR detailing changes to incorporate scope-based authorization within the DFC Standard