RFC 3341 (rfc3341) - Page 3 of 26
The Application Exchange (APEX) Access Service
Alternative Format: Original Text Document
RFC 3341 The Application Exchange (APEX) Access Service July 2002 2. Use and Management of Access Information Access information is organized around access entries, each of which contains: o an owner: an APEX address with which the entry is associated; o an actor: an APEX address that is granted permission to perform some action in the context of the owner; o a list of actions; and, o a timestamp indicating when the service last created or modified the access entry. The access entry for a given owner controls access to a potentially large range of different APEX services, such as data delivery, access control, and presence information. In addition, Section 4.5 of [1] discusses APEX access policies that govern such activities as peer authentication, message relaying, and so on. Management of access information falls into three categories: o applications may query the access service to see if one or more actions are allowed; o applications may retrieve access information associated with an owner/actor combination; and, o applications may modify (i.e., create, replace, or delete) access information associated with an owner/actor combination. Each is now described in turn. 2.1 Querying Access Information When an application wants to determine whether one or more actions are allowed for an owner/actor combination, it sends a "query" element to the service, e.g., +-------+ +-------+ | | -- data -------> | | | appl. | | relay | | | <--------- ok -- | | +-------+ +-------+ Rose, et. al. Standards Track
