... | ... | @@ -4,7 +4,7 @@ This page lists key concepts and terminology related to the PEP system, and prov |
|
|
| ------- | ------------ | ----------- |
|
|
|
| Access Administrator | AA | The PEP role responsible for [data access management](Access-control#data-access) and [assignment of users to access groups](Access-control#role-determination). Users with this role are called "access administrators". Not to be confused with the "Acccess Manager" service. |
|
|
|
| access group | | A named group of users that can be [authorized](Access-control) for specific actions. Also called a "role" in the system. |
|
|
|
| Access Manager | AM | The PEP service responsible for [data access authorization](Access-control#data-access). It also cooperates with the Transcryptor (TS) service to issue data access [tickets](Access-control#tickets). Not to be confused with the "Access Administrator" role. |
|
|
|
| Access Manager | AM | The PEP service responsible for [data access authorization](Access-control#data-access). AM cooperates with the Transcryptor (TS) service to issue data access [tickets](Access-control#tickets). Not to be confused with the "Access Administrator" role. |
|
|
|
| [authorization](Access-control#authorization) | | Determining whether a user is allowed to perform certain actions in a software system. |
|
|
|
| [authentication](Access-control#authentication) | | The act providing a user's identity to a software system. |
|
|
|
| Authentication Server | AS | A server involved in PEP's [access control](Access-control) mechanism. AS takes an externally provided identity as input and produces an OAuth token as output. |
|
... | ... | |