-
Notifications
You must be signed in to change notification settings - Fork 33
Nomenclature
Authorization Server A server issuing OAuth 2.0 access tokens to the Client after successfully authenticating the user and obtaining authorization.
Client In the OAuth context, an application or system making protected requests on behalf of the ser and with his or her authorization.
OAuth 2.0 An open protocol to allow secure API authorization in a simple and standard method from desktop and web applications. It enables users to grant third-party access to their web Resources without sharing their passwords.
Personal Data Store A protected resource owned and controlled by an individual to hold their personal data. The user controls access to use, modication, copying, derivative works, and redaction or deletion of the data they enter into the Personal Data Store, including data collected from their smartphone via either passive sensor collection or surveys.
Registry Account management and database of registered users. This server stores only data that is necessary to authenticate a user (email and password hash) and locate their PDS, and has an internal as well as an external identier for each user. The Registry authenticates login requests, as part of the OAuth authorization
REST Service A type of web service that is stateless, cacheable, and provides a uniform interface to resources. Such services use URLs to uniquely identify resources and standard HTTP methods of GET, POST, PUT, and DELETE to specify the operation to perform on a resource.
Scope When an individual authorizes access to data on their personal data store, the access token also includes one or multiple named Scopes, each designating a type of data access that has been authorized.
Symbolic User ID Indirect reference to a registered users OAuth and Registry identier key. Also referred to as a participants UUID.
User ID A participants OAuth and Registry identier key. It is accessed only internally by openPDS and the Registry server. When Entities other than the Participant or System Entity need to reference it, they are given a Symbolic User ID.