Stream: Security and Privacy
Topic: CapabilityStatement for auth through Certificates or Kerbero
Leonid Toporkov (Feb 25 2019 at 06:49):
Hi,
There is a lot of information and samples how CapabilityStatement resource should look like for using SMART spec, but I cannot find any for Kerberos of Certificate auth process examples.
Also, it’s not clear about using several options simultaneously, how to arrange CapabilityStatement properly?
Does anyone can share useful links or examples?
Thanks.
Grahame Grieve (Feb 25 2019 at 08:58):
no we've never really investigated that properly. Let's start with the first question: What is the purpose of saying anything beyond 'this server uses kerberos'?
Leonid Toporkov (Feb 25 2019 at 17:02):
@Grahame Grieve well, I thought that there is similar to SMART extension has to be used, which contains information about endpoints or whatever it needs to proceed auth w/ kerberos or certificate. What we're trying to do, is some more or less universal configuration tool for HAPI server and that's why I'm wondering which way other security options are reflected in CapabilityStatement.
Last updated: Apr 12 2022 at 19:14 UTC
