search

acciente / oacc-core

OACC (Object ACcess Control) is an advanced Java Application Security Framework
http://oaccframework.org/
Apache License 2.0
107 stars 23 forks source link

Relation/integration with OAuth 2.0 / OpenID Connect #49

Open SemanticBeeng opened 5 years ago

SemanticBeeng commented 5 years ago

Can OACC work in context of OAuth 2.0 and OpenID Connect ?

https://www.scottbrady91.com/OAuth/Delegation-Patterns-for-OAuth-20

"OAuth is all about delegation. It allows a client application to ask resource owner (a user) for permission to access a protected resource (an HTTP API) on their behalf. It is a delegation protocol."

Specifically, how would "delegation" work? Any reasons why it would clearly not make sense to use OACC as implementation ?