Authorization Services - Terms Glossary
End Application – An application utilizing the microservice to handle authorization.
AppRegistration – A specific end application that will communicate with the service.
AppToken – A confidential token used by an end application to communicate with the service.
RequestToken – An access key issued by the microservice to allow an end application user the ability to authenticate.
BackendSession – A long lived instance of authentication. A user may have a Google oAuth BackendSession active, for example. Any end application wishing to utilize Google oAuth can utilize this BackendSession so that re-authentication with Google is not required within a certain timeframe.
Ticket – An access key issued by the microservice after authentication is successful. Identifies a specific end application user.
Resource – A “thing” that may be conditionally accessed.
Action – Something that can be done on a Resource.
Policy – A unique combination of a Resource and Policy.
Decison – The result of evaluating a Policy.
Rule – An evaluable logic unit that controls access to a Policy.
RuleHandler – The underlying provider of a Rule’s logic.
DataSource – A provider of data that can be used in the the Decision process for a Rule.
DataSourceHandler – The underlying provider of a DataSource’s data.