issues
search
WLCG-AuthZ-WG
/
common-jwt-profile
A repo for the WLCG Common JWT profile document
3
stars
8
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
remove duplicate info on key cache lifetime
#54
hshort
opened
2 months ago
0
Use consistent style for acronym and RFC hyperlinks in token glossary item
#53
DrDaveD
closed
6 months ago
1
Inconsistency in token issuer public key cache lifetimes
#52
DrDaveD
opened
6 months ago
1
Correction of typos, grammar, etc.
#51
maarten-litmaath
closed
6 months ago
0
distinguish creation of directories vs. files
#50
maarten-litmaath
opened
6 months ago
0
Document edits not changing the semantic
#49
mambelli
closed
6 months ago
5
Improve the description of path handling in storage scopes.
#48
maarten-litmaath
closed
6 months ago
0
add alternative VO definition and description
#47
maarten-litmaath
closed
6 months ago
0
Consolidation of several changes concerning wlcg.groups
#46
maarten-litmaath
closed
6 months ago
0
Provide examples of how an "authorized area" is interpreted for HTTP …
#45
bbockelm
opened
10 months ago
0
Investigate convergence with AARC representation of groups
#44
paulmillar
opened
1 year ago
2
Unclear how to handle backwards-compatible changes
#43
paulmillar
opened
1 year ago
10
remove non-AuthZ, protocol-specific behaviour constraint
#42
paulmillar
closed
6 months ago
0
add definition of a VO
#41
paulmillar
closed
6 months ago
7
fix bad example of storage authz in scope
#40
paulmillar
closed
9 months ago
1
Unclear semantics of top-level group's name
#39
paulmillar
opened
1 year ago
1
Document doesn't define what is a virtual organisation
#38
paulmillar
closed
6 months ago
2
Is overriding POSIX required behaviour?
#37
paulmillar
opened
1 year ago
0
Missing description for listing directories
#36
paulmillar
opened
1 year ago
1
`storage.create` includes protocol-specific behaviour
#35
paulmillar
closed
6 months ago
10
No discussion on how to map the scope path to request path
#34
paulmillar
opened
1 year ago
0
Poorly specified renaming/moving authorisation
#33
paulmillar
opened
1 year ago
5
Poor specified of storage `$PATH` type
#32
paulmillar
closed
6 months ago
2
Bad example for storage scope-based authorisation statements
#31
paulmillar
closed
9 months ago
3
Documenting a third approach to authorisation
#30
paulmillar
opened
1 year ago
0
Identifying VO membership from the issuer
#29
paulmillar
opened
1 year ago
3
Document does not stated clearly that an issuer supports a single VO
#28
paulmillar
opened
1 year ago
9
Clarifies scope of storage.stage and storage.read
#27
slithy
opened
1 year ago
7
Scope of storage capabilities is ambiguous for SEs with tape storage
#26
slithy
opened
1 year ago
6
Use RFC 9068 for token version
#25
hshort
opened
1 year ago
4
Submitting pilots to computing resources: `wlcg.groups` claim and `client_credentials` flow
#24
aldbr
opened
1 year ago
22
Update description of access tokens with capability and group assertions
#23
paulmillar
closed
9 months ago
4
Limitation of the storage claim
#22
chaen
opened
1 year ago
20
Improve `storage.*:/path` description
#21
vokac
closed
6 months ago
6
fix broken links
#20
jbasney
closed
1 year ago
0
Add guidance on refresh token lifetime, renewal, revocation
#19
jbasney
closed
1 year ago
9
Guidance on Refresh Token Rotation
#18
jbasney
closed
1 year ago
2
Extend the token cache lifetime
#17
bbockelm
closed
6 months ago
14
Change storage.write in wlcg.capabilityset examples to correct storage.create
#16
DrDaveD
closed
1 year ago
0
Provide a definition of wlcg.groups that is independent of VOMS.
#15
bbockelm
closed
6 months ago
6
Wlcg auth z wg
#14
hannahshort
closed
3 years ago
0
Specify error when entity is not entitled to wlcg.group
#13
DrDaveD
closed
3 years ago
0
Add wlcg.credkey ID token claim
#12
DrDaveD
closed
3 years ago
11
CE Scope definition
#11
hannahshort
closed
9 months ago
0
Make wlcg.capabilityset match the discussed behavior
#10
DrDaveD
closed
3 years ago
3
Use Case: Multiple VOs supported by a "common implementation"
#9
jbasney
closed
2 years ago
19
Update document to RFC token exchange
#8
DrDaveD
closed
3 years ago
0
Add references to RFC 8693 (OAuth 2.0 Token Exchange)
#7
jbasney
closed
3 years ago
2
Propose a method for Group or Role Based Capability Selection
#6
jbasney
closed
3 years ago
18
Propose a method for scope-based capability reduction
#5
jbasney
closed
3 years ago
12
Next