http://www.xmlgrrl.com/blog/2010/05/23/comparing-oauth-and-uma/ Tangled musings on identity, privacy, trust, and suchlike Sat, 08 Oct 2011 19:31:02 +0000 hourly 1 http://wordpress.org/?v=3.2.1 http://www.xmlgrrl.com/blog/2010/05/23/comparing-oauth-and-uma/comment-page-1/#comment-281793 Eve Mon, 24 May 2010 21:12:48 +0000 http://www.xmlgrrl.com/blog/?p=2349#comment-281793 Hi Saqib-- Thanks for your interest. I'm not sure what you mean about pages 27/28 specifically; they don't seem to have stuff on them that's relevant to your query. But in general, the thing being protected/disclosed is any web resource. The requester might have authorization to access a web page, calendar, photo, identity profile, health record, etc., or it could be an API endpoint a la OAuth APIs. And the type of access granted could include whatever makes sense: reading, writing, or even deleting... (UMAnitarians are partial to RESTful interfaces, but we can't control the nature of APIs that someone might want to protect with UMA.) We've got a huge <a href="http://kantarainitiative.org/confluence/display/uma/UMA+Scenarios+and+Use+Cases" rel="nofollow">Scenarios and Use Cases document</a> that explores some of the possibilities. Hope this helps! Hi Saqib– Thanks for your interest. I’m not sure what you mean about pages 27/28 specifically; they don’t seem to have stuff on them that’s relevant to your query. But in general, the thing being protected/disclosed is any web resource. The requester might have authorization to access a web page, calendar, photo, identity profile, health record, etc., or it could be an API endpoint a la OAuth APIs. And the type of access granted could include whatever makes sense: reading, writing, or even deleting… (UMAnitarians are partial to RESTful interfaces, but we can’t control the nature of APIs that someone might want to protect with UMA.) We’ve got a huge Scenarios and Use Cases document that explores some of the possibilities. Hope this helps!

]]> http://www.xmlgrrl.com/blog/2010/05/23/comparing-oauth-and-uma/comment-page-1/#comment-281783 Saqib Ali Mon, 24 May 2010 17:39:06 +0000 http://www.xmlgrrl.com/blog/?p=2349#comment-281783 on page 27/28 of the "Making the World Safe for User-Managed Access" pdf what is the user disclosing to the client? on page 27/28 of the “Making the World Safe for
User-Managed Access” pdf what is the user disclosing to the client?

]]> http://www.xmlgrrl.com/blog/2010/05/23/comparing-oauth-and-uma/comment-page-1/#comment-281764 Saqib Ali Mon, 24 May 2010 15:30:09 +0000 http://www.xmlgrrl.com/blog/?p=2349#comment-281764 you guys should have presented at Google I/O. Lot of interest and enthusiasm around OpenID and OAuth....... you guys should have presented at Google I/O. Lot of interest and enthusiasm around OpenID and OAuth…….

]]>