<div dir="ltr">Dear all,<div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"></div></div><div><br></div><div>It seems as though there are inconsistencies in the payload examples. I'm using the following docs:</div><div><ul><li>the website: <a href="https://authzen-interop.net/docs/scenarios/todo">https://authzen-interop.net/docs/scenarios/todo</a></li><li>the hackmd note: <a href="https://hackmd.io/gNZBRoTfRgWh_PNM0y2wDA?view">https://hackmd.io/gNZBRoTfRgWh_PNM0y2wDA?view</a></li><li>the github tests file: <a href="https://github.com/openid/authzen/blob/main/interop/authzen-todo-backend/test/decisions.json">https://github.com/openid/authzen/blob/main/interop/authzen-todo-backend/test/decisions.json</a></li></ul><div><br></div></div><div>In all cases, we use either userID or owner in the resource category to describe the user:</div><div><br></div><div><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">{</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"subject"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">{</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">    </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"identity"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-string" style="box-sizing:border-box;color:rgb(227,17,108)">"<subject_from_jwt>"</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">}</span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">,</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"action"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">{</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">    </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"name"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-string" style="box-sizing:border-box;color:rgb(227,17,108)">"can_read_user"</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">}</span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">,</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"resource"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">{</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">    </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"userID"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-string" style="box-sizing:border-box;color:rgb(227,17,108)">"<email_OR_subject>"</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">}</span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">,</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"context"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">{</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">}</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">}</span></span><br></div><div><br></div><div>or</div><div><br></div><div><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">{</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"subject"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">{</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">    </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"identity"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-string" style="box-sizing:border-box;color:rgb(227,17,108)">"<subject_from_jwt>"</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">}</span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">,</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"action"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">{</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">    </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"name"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-string" style="box-sizing:border-box;color:rgb(227,17,108)">"can_update_todo"</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">}</span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">,</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"resource"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">{</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">    </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"ownerID"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-string" style="box-sizing:border-box;color:rgb(227,17,108)">"<email_of_owner>"</span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">,</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">    </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"type"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-string" style="box-sizing:border-box;color:rgb(227,17,108)">"todo"</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">}</span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">,</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-string-property gmail-property" style="box-sizing:border-box;color:rgb(54,172,170)">"context"</span><span class="gmail-token gmail-operator" style="box-sizing:border-box">:</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"> </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">{</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box">  </span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">}</span><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><br style="box-sizing:border-box"></span><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-plain" style="box-sizing:border-box"></span><span class="gmail-token gmail-punctuation" style="box-sizing:border-box">}</span></span><br></div><div><span class="gmail-token-line" style="box-sizing:border-box;color:rgb(57,58,52);font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:15.2px;white-space:pre;background-color:rgb(246,248,250)"><span class="gmail-token gmail-punctuation" style="box-sizing:border-box"><br></span></span></div><div><span class="gmail-token-line" style="box-sizing:border-box"><span class="gmail-token gmail-punctuation" style="box-sizing:border-box;background-color:rgb(255,255,255)">

Is that intentional? It would make more sense to always use owner since it's the grammatical purpose of the attribute in the resource category. Am I missing something?</span></span></div><div><span class="gmail-token-line" style="box-sizing:border-box"><span class="gmail-token gmail-punctuation" style="box-sizing:border-box;background-color:rgb(255,255,255)"><br></span></span></div><div><span class="gmail-token-line" style="box-sizing:border-box"><span class="gmail-token gmail-punctuation" style="box-sizing:border-box;background-color:rgb(255,255,255)">Thanks,</span></span></div><div><span class="gmail-token-line" style="box-sizing:border-box"><span class="gmail-token gmail-punctuation" style="box-sizing:border-box;background-color:rgb(255,255,255)">David.</span></span></div></div>