Navigation:
Documentation
Archive



Page Tree:

Child pages
  • Person Service Use Cases

This wiki space contains archival documentation of Project Bamboo, April 2008 - March 2013.

Skip to end of metadata
Go to start of metadata

Person pages: Home | Description | Use Cases | Questions | Models/Adoption/Delegation | Entity Diagrams | Contract



Use Cases:

Unknown macro: {multi-excerpt} Person

Service

In the following use cases, BPI = "Project Bamboo Person Identifer"

Client requests BPI associated with an identity provider's subject identifier

A client supplies an identity provider's subject identifier (e.g., a SAML <BaseID>, <NameID>, and/or <EncryptedID> elements; or an OpenID Subject Identifier). If the subject identifier is known to the service, the BPI associated with it is returned after the service verifies that the subject identifier's owner has granted the client permission to receive the subject's BPI by method TBD. Otherwise the service returns an 'unknown identifier' message (http 404 error) or an 'unauthorized request' error (http 401 (question), 407 (question)).

Client presents an IdM provider's identifier, asserting it belongs to a Bamboo Person

Client provides an IdM provider's subject identifier and a URI identifying the provider, asserting the subject identifier belongs to a Bamboo Person whose identifier (BPI) is also supplied. If the IdM provider's identifier is not already associated with a different Bamboo Person, it is associated with the supplied BPI – subject to the service's verification of the correctness of the requested account linkage by method TBD.

Client presents an IdM provider's identifier, asserting it no longer belongs to a Bamboo Person

Client provides an IdM provider's subject identifier and a URI identifying the provider, asserting the subject identifier no longer belongs to a Bamboo Person whose identifier (BPI) is also supplied. If the IdM provider's identifier is associated with the identified Bamboo Person, it is dissociated – subject to the service's verification of the appropriate permission to unlink the account, by method TBD.

Client requests list of identifiers associated with a BPI

Client presents a BPI and requests a list of identity providers and associated subject identifiers that the services associates with the presented BPI. The service provides the requested list, subject to verification that the client is authorized to receive the list of providers and identifiers by method TBD.





Person pages: Home | Description | Use Cases | Questions | Models/Adoption/Delegation | Entity Diagrams | Contract