On 22 May 2014, at 15:54, Gabriel López <[log in to unmask]> wrote:
> I see your use case,
>
> If you want to make use of this value just for identification that's ok,
> but if you want to specify something like "If the user belongs to
> hash(coi)@idp then ..." then I suppose we are talking about
> authorization ….
Ah yes, see what you mean. No, I’m talking about the username/NAI being a part of the input to the hash, so it would be a per user identifier that is stable across the CoI, but pseudonymous. In which case “if user has hash@idp” would equate to “is a particular user”.
Rhys.
--
Dr Rhys Smith
Identity, Access, and Middleware Specialist
Cardiff University & Janet, the UK's research and education network
email: [log in to unmask] / [log in to unmask]
GPG: 0x4638C985
|