Policy Creation Request Endpoint
Issue reference
#9+
Document status [draft/final]
Draft
NOTE: This page will become part of https://dev.ishare.eu/.
The Delegation policy request endpoint is an API endpoint that receives policy creation requests. The POST body accepts a JWT token: the Policy Creation Request Token.
The implementation of this endpoint is not mandatory.
Request
Request HTTP methods
POST
Request headers
Authorization
String
OAuth 2.0 authorization based on bearer token. MUST contain "Bearer " + access token value. How to retrieve the access token can be found at Access Token Endpoint section.
Content-Type
String
Defines request body content type. MUST be equal to application/jwt.
Request body
The body contains a JWT.
Request example
Response
Response headers
Content-Type
String
Defines response body content type. MUST be equal to application/json.
Response body
The body consists of a JSON containing a message and a code.
Response HTTP status codes / responses
Response body does not contain policy information, only the result of the request.
200 OK: The requested policy is created.
401 Unauthorized: When Authorization header is either missing, invalid or token has already expired.
403 Forbidden: This error message is return when a policy creation request could not be processed after rules evaluation. The requested policy does not comply with the rules as set by the Entitled Party.
500 Server Error: When the Authorization Registry was unable to process the request
Example:
Policy Request Token
This is a description of the delegationPolicyRequestToken, used in the POST request to the /delegationPolicy endpoint to request creation of a delegation policy. The JWT must conform to the iSHARE JWT specifications. The structure of the token is very similar to the structure of the delegation evidence token, which is presented in the response of a delegation evidence request.
Last updated