You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I believe we need to extend things further than plain vanilla ACL:
Use cases
I want to grant this Physician access to my medical records for the next 30 days only
I want the information returned for someone in China to be different than information for someone in Iceland. Thus to get beyond the base information, a geolocation is required.
I want to restrict information to certain IP ranges
The text was updated successfully, but these errors were encountered:
What you describing are rules for managing the ACL, not ACL in itself.
RubenVerborgh
changed the title
ACL should be expanded to include Effectivity Dating, IP and Geolocation filtering
Extend authorization to other attributes beyond identity
Apr 13, 2019
I think we can reasonably extend the agentClass for some of these use cases. Note also that OpenLink has attached queries to ACLs. It should be quite straightforward to associate an agent class with a certain query, and so execute that query when needed, to extend the identity-based proof.
I believe we need to extend things further than plain vanilla ACL:
Use cases
The text was updated successfully, but these errors were encountered: