access control information (formerly... Strawman) - bill parducci - org.oasis-open.lists.xacml

9 messages in org.oasis-open.lists.xacmlaccess control information (formerly....

From	Sent On	Attachments
bill parducci	Jun 11, 2001 3:54 pm
Simon Y. Blackwell	Jun 11, 2001 5:08 pm
bill parducci	Jun 11, 2001 8:24 pm
Polar Humenn	Jun 12, 2001 5:44 am
Polar Humenn	Jun 12, 2001 5:45 am
Simon Y. Blackwell	Jun 12, 2001 6:03 am
Simon Y. Blackwell	Jun 12, 2001 6:06 am
Polar Humenn	Jun 12, 2001 6:16 am
bill parducci	Jun 12, 2001 10:36 am

Subject:	access control information (formerly... Strawman)
From:	bill parducci (bi...@parducci.net)
Date:	Jun 11, 2001 3:54:14 pm
List:	org.oasis-open.lists.xacml

/* For the most part these situations can be reduced to things of the form "If you don't tell me that I need a $5,000 balance to access your services, how do I know what to do to comply?". */

good point. however, should the response be 'you need $5,000 to have access' or 'insufficient funds to access'? i know to some this may seem pedantic, but the former message provides the requestor with specific information regarding your ACL. (imagine the case of 'denied: not memeber of xyz group')

/* Once again, we should leave the decision whether or not to expose policy to the expression of the policy itself. */ ultimately, this may be the only workable solution. (although, let's shoot a couple of prisoners first and see how it goes to make sure :o)

	Start a set with this search
	Include this search in one of my sets
	Exclude this search from one of my sets