Search

Scope: Core (OPC-10000-*) All specs

7 result(s) for IssuedIdentityToken

OPC-10000-4 – OPC Unified Architecture - Part 4: Services

7.40.6 IssuedIdentityToken

IssuedIdentityToken The IssuedIdentityToken is used to pass SecurityToken s issued by an external Authorization Service to the Server . These tokens may be text or binary. OAuth2 defines a standard ... expiration time to avoid communication interruption or other operation failures. Table 191 defines the IssuedIdentityToken parameter. Table 191 - IssuedIdentityToken Name Type Description IssuedIdentityToken structure The token provided by an Authorization
OPC-10000-4 – OPC Unified Architecture - Part 4: Services

6.2.2 Indirect handshake with an Identity Provider

passed to a Server instead of the credentials. These tokens are passed as an IssuedIdentityToken defined in 7.40.6 . The protocol to request tokens depends on the Authorization Service (AS). Common
OPC-10000-4 – OPC Unified Architecture - Part 4: Services

7.40.4 UserNameIdentityToken

specified. Table 189 describes the dependencies for selecting the AsymmetricEncryptionAlgorithm for the UserNameIdentityToken and IssuedIdentityToken. The SecureChannel SecurityPolicy URI is specified in the EndpointDescription and used in subsequent OpenSecureChannel requests ... specified in the EndpointDescription . The encryptionAlgorithm is specified in the UserNameIdentityToken or IssuedIdentityToken provided by the Client in the ActivateSession call. The SecurityPolicy Other in the table refers
OPC-10000-5 – OPC Unified Architecture - Part 5: Information Model

6.4.3 AuditEventType

shall be the X509 Subject Name of the Certificate . If the UserIdentityToken is an IssuedIdentityToken then the ClientUserId shall be a string that represents the owner of the token ... best choice for the string depends on the type of IssuedIdentityToken. If the UserIdentityToken is a JWT IssuedIdentityToken , then the ClientUserId shall depend on the existence of the 'iss' (issuer
OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings

6.5.2.1 General

General JSON Web Token (JWT) UserIdentityTokens can be passed to the Server using the IssuedIdentityToken . The body of the token is a string that contains the JWT as defined
OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services

7.10.25 UserTokenSettingsDataType

using a Certificate in the TrustList to verify the Signature on an IssuedIdentityToken . The CertificateGroup is not specified for UserName or Anonymous TokenTypes . The KeyCredentialName is only specified for IssuedIdentityTokens ... UserTokenType The type of UserIdentityToken IssuedTokenType 0:String A URI identifying the type of IssuedIdentityToken (i.e. JWT). IssuerEndpointUrl 0:String An optional string which depends on the Authorization Service
OPC-10000-18 – OPC Unified Architecture - Part 18: Role-Based Security

4.4.3 IdentityMappingRuleType

criteria contains one of the entries in the roles array of the JWT IssuedIdentityToken . If "iss" is present in the JWT IssuedIdentityToken , the criteria is prepended ... criteria contain one of the entries in the groups array of the JWT IssuedIdentityToken . If "iss" is present in the JWT IssuedIdentityToken , the criteria is prepended