NicolasLiampotis
commented
2 weeks ago We distinguish between the following profiles:
- Core: This attribute is part of the core profile and is considered essential for basic functionality.
- Extended: This attribute is part of the extended profile and may not be supported by all AARC compliant proxies. Its inclusion provides additional information about the subject but is not mandatory.
We propose the following classification for profile attributes:
- Subject Identifier
- Public Subject Identifier --> Core
- Pairwise Subject Identifier --> Core
- Name
- Display Name --> Core
- Given Name --> Core
- Family Name --> Core
- Email
- Email Address --> Core
- Email verification status --> TBD
- Organisation
- Organisation Display Name --> Core
- Organisation Domain --> Core
- Organisation’s Country --> Extended
- Organisation compliance with policies --> Extended
- Affiliation
- Affiliation within Home Organisation --> Core
- Affiliation within Community/Research Infrastructure --> TBD
- Assurance --> Core
- Group and Role information --> Core
- Resource Capabilities --> Core
- External Subject Identifiers
- External subject identifiers --> Extended
- ORCID --> TBD
- SSH Public keys --> Extended
- Certificates
- Certificate Subject DNs --> Extended
- Certificate Issuer DNs --> Extended
- Subject Type --> TBD
- Subject Status --> Extended
- Agreement to Policies --> Extended
- Authenticating Authorities --> Extended
This issue proposes improving the clarity around core/mandatory and optional attributes within AARC-G056.
The document currently lacks clear distinction between core/mandatory/essential vs. optional/non-essential attributes.
The document should explicitly define core/mandatory/essential and optional/non-essential attributes and clarify their purpose.
Possible Solutions: