@@ -37,4 +37,4 @@ Discussions with various Module Owners and CSP is in progress and below requirem
...
@@ -37,4 +37,4 @@ Discussions with various Module Owners and CSP is in progress and below requirem
o System Configuration.
o System Configuration.
<h4>c. Entitlement and obligation (E&O) Module</h4>
<h4>c. Entitlement and obligation (E&O) Module</h4>
Entitlements service is used to enable authorization in Data Ecosystem. The service allows for the creation and user mapping for groups. A group name defines a permission. Users who are added to that group obtain that permission. The main motivation for entitlements service is data authorization but the functionality enables three use cases:<br/>
Entitlements service is used to enable authorization in Data Ecosystem. The service allows for the creation and user mapping for groups. A group name defines a permission. Users who are added to that group obtain that permission. The main motivation for entitlements service is data authorization but the functionality enables three use cases:<br/>
<ol><li>Data groups used for data authorization e.g. data.welldb.viewer, data.welldb.owner</li><li>Service groups used for service authorization e.g. service.storage.user, service.storage.admin </li><li>User groups used for hierarchical grouping of user and service identities e.g. users.datalake.viewers, users.datalake.</li></ol>
<ol><li>Data groups used for data authorization e.g. data.welldb.viewer, data.welldb.owner</li><li>Service groups used for service authorization e.g. service.storage.user, service.storage.admin </li><li>User groups used for hierarchical grouping of user and service identities e.g. users.datalake.viewers, users.datalake.</li></ol>
