[Openid-specs-authzen] Agenda for today's call

Tue Dec 3 17:15:24 UTC 2024

RSK is updating its PDP to support AuthZen spec, and will be released before xmas, as part of our ALFA 2.0 release.

Andy

We are the first IdentityServer partner to become a Certified B Corporation™.
Head to our mission statement to read more about the ways we’re using business as a force for good.

Rock Solid Knowledge Ltd is a company registered in England and Wales under number 6811209.
Registered office: C2, Vantage Office Park, Old Gloucester Road, Bristol, BS16 1GW, United Kingdom
Vat registered: GB948 1966 72
________________________________
From: Openid-specs-authzen <openid-specs-authzen-bounces at lists.openid.net> on behalf of David Brossard via Openid-specs-authzen <openid-specs-authzen at lists.openid.net>
Sent: 03 December 2024 17:03
To: AuthZEN Working Group List <openid-specs-authzen at lists.openid.net>
Cc: David Brossard <david.brossard at gmail.com>
Subject: [Openid-specs-authzen] Agenda for today's call

Dear all,

As we near the end of the year, it's time we plan what we aim to achieve in 2025. As such, here's an agenda of items we can discuss on today's call (3 pm PT)

  *   API endpoints
     *   Evaluation API: this API is complete. It's in implementor's draft and we can consider changes moving forward but the idea is that it's stable and good enough
     *   Evaluations API: the overall principle is complete but we have outstanding ideas & feedback to walk through such as the ability to control the evaluation behavior
     *   Search API: this is our biggest work-in-progress. Vladi has a draft proposal as did Atul in the original spec. We believe we can split the work into
        *   a predicate-based API that returns predicates/filters
        *   a listing API that returns the entitled data
     *   Discovery endpoint: Given that PDPs can support a subset of authorization APIs, we need a means to discover what that subset is. The discovery endpoint can give us that (and more).
  *   Outreach: for AuthZEN to be successful, we need to spread the word and encourage others to implement AuthZEN (as did Curity; Strata has plans for internal use). There are different groups we can address
     *   the Analyst community: Omri and I are speaking to Homan F. from Gartner and we need more interactions with other analysts
     *   the IdP vendors/software: let's talk to Entra, PingAccess, Okta, Gluu, etc... to get them to implement a PEP in their product for a wide range of use cases (on us: define the use cases)
     *   the API gateways. I put together a list (thanks to Gartner's Mark O'Neill) that you can browse here: https://hackmd.io/@oidf-wg-authzen/target-integrations
     *   Others: SaaS, COTS?
  *   Design patterns: we need to continue that stream of work and publicize the results so we can guide practitioners into the adoption of externalized authorization
     *   In particular in light of OAuth: how can we collaborate?

Notes are in HackMD<https://hackmd.io/@oidf-wg-authzen/wg-meeting-20241203> as usual and linked to from our GitHub Wiki site<https://github.com/openid/authzen/wiki/Meetings>.

One last housekeeping item: let's go ahead and cancel 12/24 and 12/31. Who wants to talk about authorization on Christmas Eve?

Thanks,
Omri, Gerry, and David.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-authzen/attachments/20241203/ce469cba/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image351824.png
Type: image/png
Size: 67887 bytes
Desc: image351824.png
URL: <http://lists.openid.net/pipermail/openid-specs-authzen/attachments/20241203/ce469cba/attachment-0002.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image744586.png
Type: image/png
Size: 31014 bytes
Desc: image744586.png
URL: <http://lists.openid.net/pipermail/openid-specs-authzen/attachments/20241203/ce469cba/attachment-0003.png>