@ ABAC(Attribute-based access control)

@ RBAC(Role-based access control)

@ UBAC(User-based access control)

@ CBAC(Context-based access control)

@ TBAC(Time-based access control)

@ ACMs(Access control mechanisms)

@ SPI(Service Provider Interface)

@ UMA(User-Managed Access)是OAuth 2.0的轮廓。UMA定义资源拥有者如何控制他的资源,允许其他客户端访问。即便资源分布在不同的服务器中,只需要一个授权中心允许访问即可。

User-Managed Access (UMA) is a profile of OAuth 2.0. UMA defines how resource owners can control protected-resource access by clients operated by arbitrary requesting parties, where the resources reside on any number of resource servers, and where a centralized authorization server governs access based on resource owner policies.

来源: User-Managed Access

@ AAT(Authorization API Token)

@ RPT(Request Party Token)

@ CLI(Command Line Interface)

@ JOSE(JSON Object Signing and Encryption)

@ JWT(JSON Web Token)

@ JWS(JSON Web Signature)

@ JWE(JSON Web Encryption)

@ JWA(JSON Web Algorithms)

@ JWK(JSON Web Key)