View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
000408210000-018: Role-Based SecuritySpecpublic2017-12-04 13:312020-12-01 17:33
ReporterMatthias Isele Assigned ToMatthias Damm  
PrioritynormalSeverityminorReproducibilityalways
Status closedResolutionfixed 
Summary0004082: IdentityMapping for Well Known Roles
Description

For Anonymous and AuthenticatedUser we should define a default mapping.

WellKnownRoleAnonymous:
add Mapping for criteria type ANONYMOUS_5

WellKnownRoleAuthenticatedUser:
add Mapping for criteria type AUTHENTICATED_USER_6

Adding this identity mapping rules includes that the rule is visible on the RoleType.

TagsNo tags attached.
Attached Files
Commit Version
Fix Due Date

Activities

Matthias Damm

2020-09-18 11:14

developer   ~0012935

Well known roles are defined in Part 3.
Do we need the formal definition for the nodes in Part 18?

Matthias Isele

2020-09-18 11:52

reporter   ~0012936

Proposal:
In Part 3 - 4.8.2 Well Known Roles:
add a Table for Default Mappings that describes which IdentityMappingRules are implicitly added for certain Well-Known-Roles:

Anonymous -> add identity mapping for Anonymous and AuthenticatedUser
AuthenticatedUser -> add identity mapping for AuthenticatedUser

see screenshot for sample

anonymous.png (89,899 bytes)   
anonymous.png (89,899 bytes)   
authenticated.png (87,228 bytes)   
authenticated.png (87,228 bytes)   

Matthias Damm

2020-09-18 12:27

developer   ~0012940

Last edited: 2020-09-18 12:31

Discused in UA meeting:

Add figure that shows the RoleSetType and the use in the Server object.

Add RoleSet table with the well known roles

Add recommended defaults.

Matthias Damm

2020-09-18 13:15

developer   ~0012943

Added new chapter 4.3 RoleSet
Added table with well known roles in a RoleSet object

Added following text:
The default Identities for the Anonymous Role should be Identities with the criteriaType IdentityCriteriaType.Anonymous and the criteriaType IdentityCriteriaType.AuthenticatedUser.
The default Identities for the AuthenticatedUser Role should be an identity with the criteriaType IdentityCriteriaType.AuthenticatedUser.

OPC 10000-18 - UA Specification Part 18 - User Authentication 1.05.0 Draft5.docx

Jim Luth

2020-12-01 17:33

administrator   ~0013339

Agreed to changes edited in Telecon.

Issue History

Date Modified Username Field Change
2017-12-04 13:31 Matthias Isele New Issue
2018-01-23 17:56 Jim Luth Assigned To => Randy Armstrong
2018-01-23 17:56 Jim Luth Status new => assigned
2020-06-17 18:54 Jeff Harding Project 10000-005: Information Model => 10000-018: Role-Based Security
2020-09-18 11:14 Matthias Damm Note Added: 0012935
2020-09-18 11:14 Matthias Damm Assigned To Randy Armstrong => Matthias Damm
2020-09-18 11:52 Matthias Isele File Added: anonymous.png
2020-09-18 11:52 Matthias Isele File Added: authenticated.png
2020-09-18 11:52 Matthias Isele Note Added: 0012936
2020-09-18 12:27 Matthias Damm Note Added: 0012940
2020-09-18 12:31 Matthias Damm Note Edited: 0012940
2020-09-18 13:15 Matthias Damm Status assigned => resolved
2020-09-18 13:15 Matthias Damm Resolution open => fixed
2020-09-18 13:15 Matthias Damm Note Added: 0012943
2020-12-01 17:33 Jim Luth Status resolved => closed
2020-12-01 17:33 Jim Luth Fixed in Version => 1.05
2020-12-01 17:33 Jim Luth Note Added: 0013339