3 votes

Currently, national APIs such as PDS rely on the calling system to implement role-based access controls (RBAC). This in turn increases the assurance burden on developers and on us for them to prove they have done it correctly. The scope of this feature is to look into adding RBAC into APIs to (a) improve security and (b) reduce the assurance burden on developers. This might be based on the standard national RBAC model.

Suggested by: API Management Team Upvoted: 18 Nov Comments: 0

Under consideration platform-phase-3

Add a comment

0 / 1,000

* Your name will be publicly visible

* Your email will be visible only to moderators