# Identiverse AuthZEN Interop Demo - no attributes ## Scenario The next interoperability demonstration will focus on the Search API (Draft 03). https://openid.github.io/authzen/ ### Description We have a basic web app that allows users to get access to `documents`. Documents have metadata associated with them: - owner - department Users have metadata associated with them: - username - role - department - manager We have the following basic rules: - any user can view a document - any user can view any document in their department - any user can edit a document they own - a manager can edit a document in their department - a manager can delete an document in their department - a user can delete a document they own ### Users Define sample users here Assumption: there will be a static list of users ### Data (Items) Define sample records here Assumption: there will be a static list of records ## Demo App The Demo App is a simple UX that has 3 options: 1. User search (who can view record X?) 2. Resource search (which records can Alice view?) 3. Action search (what action can Alice do on record X?) The Demo App lets the end-user choose the record identifier and action. The Demo App lets the end-user choose the PDP endpoint. The Demo has a button called "Search" which, when clicked, sends the AuthZEN search request to the backend and gets a response back and visualizes it on-screen. ## Conformance Tests Once the sample data is defined, we can write the conformance tests. ## App Hosting - Investigate either Axiomatics, Hexa, or David B's personal GCP - Each PDP needs to handle their own data store given the search response contains the data - The 'Demo App' is just a glorified, stateless, PEP ## Participants & Schedule - Confirmed: Axiomatics (David), Cerbos (Alex O), Ping (via David H), SGNL (Atul), PlainID (Vladi), Permit.io (Gabriel), Thales (Cyril), AWS (Jeff), IndyKite (Alex B), EmpowerID (Patrick), WSO2 (Hasintha), Topaz (Omri) - Possible: Aserto (Omri), Okta, Strata (Hexa) - No: RSK ### Schedule - April 16th - Use case defined - Sample data defined - Conformance tests defined - May 2nd - Demo app is up and running - May 19th - Participants have run through the conformance tests ## On-site logistics - TBD ## Assignments - Demo app & sample data: @davidbrossard - Host the demo app - Jeff will see if AWS can host the demo app - Vladi will help with the backend development - Create conformance test - Manage the config file with compliant implementations - Alex O also offered to work on this - Participant outreach: @gerryatstrata - On-site logistics: *TBD* - Liaison with OpenID (Marketing, etc): - Clone datasheet and produce new one - Remove todo app and add search use case: *TBD* - Vladi, David H, and Atul also asked what they could do to help