...
Identity Ecosystem Diagram
Functional Service Model with Subservices and API
. -Note: Items in this color are April 15, 2016 release requirements
Items in this black are subsequent release requirements
TIER Functional Service Model | Subservice | API Need / Message Need |
Repository Components (limited to Person for now) | Registry | New SOR Person, Inbound to Repository |
Group | ||
ODS/MDM | ||
Rule | ||
Account & Credential Management Service | Create Credential | |
Expire Credential | ||
Change Credential | ||
Account Linking Service | ||
Registration and Enrollment Service from SOR | Search/Match Entity | Search Match Person (Stub) |
Resolve Entity | ||
Split Entity | ||
Merge Entity | ||
Group Management Service | Create Group | Create Group |
Add Member | Add Member | |
Remove Member | Remove Member | |
Is Member Of | Is Member Of | |
Show me Groups for person | Show Me Groups for Person | |
Show me all members of Group | Show Me All Members of Group | |
Privilege Management Service | Create Privilege | Create Privilege |
Add Member | Add Member | |
Remove Member | Remove Member | |
Show me Privileges for Person | Show me Privileges for Person | |
Show me all member with Privilege | Show me all member with Privilege | |
Provisioning /De-Provisioning Consumers Service | Person Entity | |
Guest Entity | ||
Group member | ||
Privilege | ||
Provisioning Connectors | LDAP | Put LDAP Person |
ORACLE | ||
Kerberos | Put Kerberos Principal | |
Active Directory | ||
Identity Proofing Service | Person Entity | |
Rules Engine Service | Filtering | |
Routing | ||
Integration | ||
Provisioning/De-Provisioing | ||
LifeCycle | ||
Audit - Monitoring Operations Service | Transaction History (Human Readable) | |
Point In Time Logs | ||
Manual History Records (comments) | ||
Operational Monitoring | ||
Usage Monitoring | ||
Administrative Configuration Service | User Interface (UI) | |
Institution Terminology (Translations) | ||
Reporting / Information Analytics Service | Notifications | |
Authn and Authz Analytics | ||
Authn and Authz Audit / Compliance | ||
Authentication (Authn) | ||
Authorization (Authz) |
The term Entity Registry (Person Registry) is explained well in this document Functional Model (Identity Registry)
...