[OpenID] AX query and wildcards
Pat Cappelaere
pat at cappelaere.com
Tue Jan 6 18:48:07 UTC 2009
Here is the scenario:
Using a role-based access control, I am interested in the permissions
that a user may have been granted by his organization (which I can get
from the organization's OP) if the user let's me.
This brings up a few issues:
I would need an experimental attribute since I cannot find what I need
there (http://www.axschema.org/types/)
Let's use a new x-type:
http://axschema.org/x/company/permission
If I fetch this, AX will return all of them with no problems.
But User could have many permissions and is unlikely to let me have
access to all the permissions he may have.
As an SP, I may only be interested in a relevant subset. So If you
are a Red Cross user, I may want to check if you have been granted any
NASA specific permissions. Assuming that permissions could be
specified as uri's such as nasa:*
So how can I fetch all user permissions that match nasa:*?
Should I use an XQuery in the type attribute?
openid.ax.type.permission = http://axschema.org/x/company/
permission[starts-with(.,'nasa:')]
or add a query/filter/regex attribute?
openid.ax.type.permission=http://axschema.org/x/company/permission
openid.ax.type.query = nasa:*
Thanks,
Pat.
More information about the general
mailing list