[Openid-specs-authzen] Agenda for today's call

David Brossard david.brossard at gmail.com
Tue Dec 3 17:03:18 UTC 2024 

Dear all,

As we near the end of the year, it's time we plan what we aim to achieve in
2025. As such, here's an agenda of items we can discuss on today's call (3
pm PT)


   - API endpoints
      - Evaluation API: this API is complete. It's in implementor's draft
      and we can consider changes moving forward but the idea is that
it's stable
      and good enough
      - Evaluations API: the overall principle is complete but we have
      outstanding ideas & feedback to walk through such as the ability
to control
      the evaluation behavior
      - Search API: this is our biggest work-in-progress. Vladi has a draft
      proposal as did Atul in the original spec. We believe we can
split the work
      into
         - a predicate-based API that returns predicates/filters
         - a listing API that returns the entitled data
      - Discovery endpoint: Given that PDPs can support a subset of
      authorization APIs, we need a means to discover what that subset is. The
      discovery endpoint can give us that (and more).
   - Outreach: for AuthZEN to be successful, we need to spread the word and
   encourage others to implement AuthZEN (as did Curity; Strata has plans for
   internal use). There are different groups we can address
      - the Analyst community: Omri and I are speaking to Homan F. from
      Gartner and we need more interactions with other analysts
      - the IdP vendors/software: let's talk to Entra, PingAccess, Okta,
      Gluu, etc... to get them to implement a PEP in their product for a wide
      range of use cases (on us: define the use cases)
      - the API gateways. I put together a list (thanks to Gartner's Mark
      O'Neill) that you can browse here:
      https://hackmd.io/@oidf-wg-authzen/target-integrations
      - Others: SaaS, COTS?
   - Design patterns: we need to continue that stream of work and publicize
   the results so we can guide practitioners into the adoption of externalized
   authorization
      - In particular in light of OAuth: how can we collaborate?

Notes are in HackMD <https://hackmd.io/@oidf-wg-authzen/wg-meeting-20241203>
as usual and linked to from our GitHub Wiki site
<https://github.com/openid/authzen/wiki/Meetings>.

One last housekeeping item: let's go ahead and cancel 12/24 and 12/31. Who
wants to talk about authorization on Christmas Eve?

Thanks,
Omri, Gerry, and David.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-authzen/attachments/20241203/0e5df233/attachment.htm>

More information about the Openid-specs-authzen mailing list