Colleagues
I think we have now agreed on these problem and solution definitions:
Problem Definition
LIRs would like a mechanism to easily add/remove users to centralised SSO authentication groups for maintaining objects in the RIPE Database.
Solution Definition
Stage 1
-Non billing Users listed in an LIR´s portal account will be contained in a default authentication group
-Non billing users added or removed through the portal UI will be automatically adjusted in this group
-This authentication group can be referenced in MNTNER objects by a new authentication method
-These authentication groups for LIRs will be stored in a way that updates to the RIPE Database is not dependent on the availability of the portal service
Stage 2
-Non billing Users listed in an LIR´s portal account can be added to and removed from user defined SSO authentication groups
-Each User can be a member of any number of named groups
-The authentication groups can be configured using the portal UI
-These groups can be referenced in MNTNER objects by the new authentication method
The chairs will now ask the RIPE NCC to work from these definitions in preparing their implementation plan.
cheersdenis
co-chair DB-WG