Wording Improvement in Section 4.3 Registration

ietf-wg-scitt / draft-ietf-scitt-architecture

An Architecture for Trustworthy Digital Supply Chain Transparency Services

Other

11 stars 12 forks source link

Wording Improvement in Section 4.3 Registration #280

Closed hannestschofenig closed 4 weeks ago

hannestschofenig commented 2 months ago

Authentication and authorization is implementation-specific, and out of scope of the SCITT Architecture.

This is not correct if we also consider SCRAPI

SteveLasker commented 2 months ago

Authentication and authorization is implementation-specific, and out of scope of the SCITT Architecture.

This is not correct if we also consider SCRAPI

SCRAPI says Auth is, may or isn’t required on specific endpoints, but doesn’t specify how it’s implemented. Is that inconsistent?