Dear working group,Of course, those of us with long memories remember the move of authentication from persons to maintainers. Plus ca change....
Yesterday during the WG session we presented a proposal for implementing personalised authorisation:
As recorded in the first cut of the minutes:D. Personalised authentication (Tim Bruijnzeels, RIPE NCC)(See presentation)This will allow one click creation of person objectsMaintain credentials in one place.Allow better auditing.Done by extending person object to have multiple optional auth: attributeThis will ultimately allow existing auth: sso references to be cleaned upLast auth: attribute should not be removed from a person object that is used in an authorisation context.