-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
1 changed file
with
73 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,73 @@ | ||
| workspace { | ||
|
|
||
| /** | ||
| InCommon Trusted Access Platform IAM Functions List | ||
| C4 model definition using Structurizr DSL | ||
| (Details at https://github.com/structurizr/dsl/blob/master/docs/language-reference.md) | ||
| */ | ||
|
|
||
| model { | ||
|
|
||
| impliedRelationships true | ||
|
|
||
| enterprise "Cirrus and Evolveum" { | ||
|
|
||
| self_service = softwareSystem "self-service idm" "End user control over self-asserted information" | ||
| reg_enroll = softwareSystem "identity registration, enrollment" "identity registration, enrollment" | ||
| idp_select = softwareSystem " idp discovery and selection" " idp discovery and selection" | ||
| idpolr = softwareSystem " idp of last resort" " idp of last resort" | ||
| id_proofing = softwareSystem " identity proofing" " identity proofing" | ||
| cred = softwareSystem " credentialing" "credentialing" | ||
| cred_binding = softwareSystem " credential binding" " credential binding" | ||
| acct_validation = softwareSystem "account validation" "account validation" | ||
| attrib_verify = softwareSystem "attribute verification" "attribute verification" | ||
| ident_resolve = softwareSystem "identity resolution" "identity resolution" | ||
| pwd_mgmt = softwareSystem "password management" "password management" | ||
| profile_mgmt = softwareSystem "profile management" "profile management" | ||
| progressive_profile = softwareSystem "progressive profiling" "progressive profiling" | ||
| prefs = softwareSystem "preferences" "preferences" | ||
| acct_link = softwareSystem " account linking" " account linking" | ||
| consent_priv = softwareSystem "consent and privacy protection" "consent and privacy protection" | ||
| mult_accts = softwareSystem "1 person, multi accts, (creds)" "support for multiple identity records (and credentials) for a single person" | ||
| mult_authn = softwareSystem "multiple AuthN sources and styles" "multiple AuthN sources and styles, (local SSO, social, federated, protocol gateways)" | ||
| pwd_mfa = softwareSystem "password and MFA management" "password and MFA management" | ||
| sess_mgmt = softwareSystem "session mgmt, logout" "session mgmt, logout" | ||
| // acc_mgmt = softwareSystem "access policy management" "access policy management (coarse and fine grained)" | ||
| // distr_acc_mgmt = softwareSystem "access mgmt admin, (distributable)" "access mgmt admin, (distributable)" | ||
| // req_approve = softwareSystem "request/approval processes" "request/approval processes" | ||
| // id_lifecycle = softwareSystem "lifecycle admin" "lifecycle transitions definition, admin, and automation" | ||
| // svc_acct = softwareSystem "service accounts" "service accounts" | ||
| // agents_w_creds = softwareSystem "credentialed software agents" "apps, services as credentialed agents for invoking other services, apis" | ||
| // api_dev = softwareSystem "api spec, design" "api specification, design, documentation, style guidelines" | ||
| iam_apis = softwareSystem "api access to all IAM functionality" "api access to all IAM functionality" | ||
| // api_authnz = softwareSystem "api authNZ, registry, gateway" "api authNZ, registry, gateway" | ||
| // prov_deprov = softwareSystem "provisioning, deprovisioning" "provisioning, deprovisioning" | ||
| msg_api_integ = softwareSystem "messaging, api based integration" "messaging and api integration with connected apps & services, app integration generally" | ||
| // batch_sync = softwareSystem "batch reconciliation, NRT sync" "batch reconciliation, near real time sync between registry and connected systems" | ||
| log_audit = softwareSystem "auditing, logging, other compliance" "auditing, logging, reporting, attestation, compliance support" | ||
| sp_onboard = softwareSystem "service provider onboarding and configuration" "service provider onboarding and configuration" | ||
| direct_svc = softwareSystem "directory services" "directory services" | ||
| // data_dict = softwareSystem "IAM data dictionary" "IAM data dictionary" | ||
| iam_data_access = softwareSystem "access to iam data" "access to identity and entitlement data" | ||
|
|
||
| connectors = softwareSystem "external system connectors" "external system connectors: development and/or use" | ||
|
|
||
|
|
||
| // Enterprise-internal relationships | ||
|
|
||
| } | ||
|
|
||
| // External people | ||
|
|
||
|
|
||
| // External software systems | ||
| // SoR = softwareSystem "System of Record" "Institution ERP systems" | ||
| // SaaS = softwareSystem "SaaS" "Software as a Service to be provisioned" | ||
| // Apps = softwareSystem "App" "Application to be provisioned" | ||
|
|
||
| // External relationships | ||
|
|
||
|
|
||
| } |