[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: [OASIS Issue Tracker] (OSLCCORE-7) OSLC Core 3.0 should specify minimal and recommend authentication to improve interoperability
James Amsden created OSLCCORE-7:
-----------------------------------
Summary: OSLC Core 3.0 should specify minimal and recommend authentication to improve interoperability
Key: OSLCCORE-7
URL: https://issues.oasis-open.org/browse/OSLCCORE-7
Project: OASIS OSLC Lifecycle Integration Core (OSLC Core) TC
Issue Type: Task
Reporter: James Amsden
Assignee: James Amsden
Security concerns are also important when managing shared information across organization and tool boundaries. The specific security needs of any application however are difficult to predict. Experience has shown that this varaiability results in complexity for tool integration and therefore some standard mechanism for authentication discovery is highly desired.
At a minimum, OSLC 3.0 servers MAY protect resources with HTTP Basic Authentication. OSLC Services that use HTTP Basic Authentication SHOULD do so only via SSL.
OSLC 3.0 servers SHOULD protect resources with OAuth2 Authentication utilizing OpenID Connect.
--
This message was sent by Atlassian JIRA
(v6.2.2#6258)
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]