This ObjectType is the TypeDefinition for an Object that allows access to an Authorization Service. It is defined in Table 62.
Table 62 – AuthorizationServiceType Definition
|
Attribute |
Value |
||||
|
BrowseName |
AuthorizationServiceType |
||||
|
Namespace |
GDS (see 3.3) |
||||
|
IsAbstract |
False |
||||
|
References |
NodeClass |
BrowseName |
DataType |
TypeDefinition |
Modelling Rule |
|
Subtype of the BaseObjectType defined in OPC 10000-5. |
|||||
|
HasProperty |
Variable |
ServiceUri |
String |
PropertyType |
Mandatory |
|
HasProperty |
Variable |
ServiceCertificate |
ByteString |
PropertyType |
Mandatory |
|
HasProperty |
Variable |
UserTokenPolicies |
UserTokenPolicy [] |
PropertyType |
Optional |
|
HasComponent |
Method |
GetServiceDescription |
|
Defined in 9.5.5. |
Mandatory |
|
HasComponent |
Method |
RequestAccessToken |
|
Defined in 9.5.4. |
Optional |
The ServiceUri is a globally unique identifier that allows a Client to correlate an instance of AuthorizationServiceType with instances of AuthorizationServiceConfigurationType (see 9.6.3).
The ServiceCertificate is the complete chain of Certificates needed to validate the Access Tokens (see OPC 10000-6 for information on encoding chains).
The UserTokenPolicies Property specifies the UserIdentityTokens which are accepted by the RequestAccessToken Method.
The GetServiceDescription Method is used read the metadata needed to request Access Tokens.
The RequestAccessToken Method is used to request an Access Token from the Authorization Service.