[Openid-specs-ab] Issue #1822: [Federation] Listing endpoint - trust_mark_id parameter (openid/connect)
peppelinux
issues-reply at bitbucket.org
Thu Feb 16 21:50:39 UTC 2023
New issue 1822: [Federation] Listing endpoint - trust_mark_id parameter
https://bitbucket.org/openid/connect/issues/1822/federation-listing-endpoint-trust_mark_id
Giuseppe De Marco:
In the listing endpoint we have the parameter called “entity\_type” to filter the subordinates that matches to a specific type.
The need to use this listing endpoint to filter subordinates for which a specific trust mark has been issued and is still valid.
We are aware that a TM can be issued also by a Leaf Entity, although we don't have a real use case for it.
We also know that a TM can be issued by one Entity, for another Entity, without any direct superior-subordinate or TA/Intermediate-leaf link.
That said, the purpose of this proposal is to add this optional feature to the listing endpoint, to obtain the filter on the tm issued exclusively by an entity to its direct descendants.
The proposal is made concrete in this PR:
[https://bitbucket.org/openid/connect/pull-requests/457](https://bitbucket.org/openid/connect/pull-requests/457)
The choice for which we have not identified another endpoint for this function and that we simply do not want to add another specialized listing endpoint but enrich the only one available.
Responsible: Giuseppe De Marco
More information about the Openid-specs-ab
mailing list