Contents of a Principal ("Subject")

Open tulshi opened this issue 2 years ago • 1 comments

Discussed in https://github.com/SGNL-ai/authzapi/discussions/23

^{Originally posted by baboulebou June 28, 2023} An ID should likely suffice in most cases. Now it's probably a good idea to also optionally add some Subject claims here that the PDP can use (thinking JWT claims coming into the PEP, or environmental values for example). But in that case it should not be just "IP" and "DeviceID", but rather an array of "key"="Value" claim pairs, or map or similar structure, which may be completely custom and use-case-specific.

Additionally, It would be good to also have a Subject Type - make it optional if not needed (but we would need it for example).

Jun 28 '23 23:06 tulshi

The other comments didn’t convert from the discussion to the issue :(

Jun 30 '23 06:06 ogazitt