OSID Logo
OSID Specifications
authentication process package
Version 3.0.0
Release Candidate Preview
Interfaceosid.authentication.process.TrustLookupSession
Implementsosid.OsidSession
Description

This session provides methods for retrieving Trusts. The Trust represents the trust level of an agent. The relationship among Agents and Trust is not explicity managed but understood by an Authentication OSID Provider when orchestration to an Authorization OSID Provider is desired.

This session defines two sets of views which offer differing behaviors when retrieving multiple objects.

  • comparative view: elements may be silently omitted or re-ordered
  • plenary view: provides a complete and ordered result set or is an error condition
  • isolated agency view: All agent methods in this session operate, retrieve and pertain to trusts defined explicitly in the current agency.
  • federated agency view: All trust methods in this session operate, retrieve and pertain to all trusts defined in this agency and any other trusts implicitly available in this agency through agency inheritence.

Generally, the comparative view should be used for most applications as it permits operation even if there a particular element is inaccessible. For example, a hierarchy output can be plugged into a lookup method to retrieve all objects known to a hierarchy, but it may not be necessary to break execution if a node from the hierarchy no longer exists. However, some administrative applications may need to know whether it had retrieved an entire set of objects and may sacrifice some interoperability for the sake of precision.

Trusts may have an additional records indicated by their respective record types. The record may not be accessed through a cast of the Trust.

MethodgetAgencyId
Description

Gets the Agency Id associated with this session.

Returnosid.id.Idthe Agency Id associated with this session
CompliancemandatoryThis method must be implemented.
MethodgetAgency
Description

Gets the Agency associated with this session.

Returnosid.authentication.Agencythe Agency associated with this session
ErrorsOPERATION_FAILEDunable to complete request
PERMISSION_DENIEDauthorization failure
CompliancemandatoryThis method must be implemented.
MethodcanLookupTrusts
Description

Tests if this user can perform Trust lookups. A return of true does not guarantee successful authorization. A return of false indicates that it is known all methods in this session will result in a PERMISSION_DENIED. This is intended as a hint to an application that may opt not to offer lookup operations.

Returnboolean false if lookup methods are not authorized, true otherwise
CompliancemandatoryThis method must be implemented.
MethoduseComparativeTrustView
Description

The returns from the lookup methods may omit or translate elements based on this session, such as authorization, and not result in an error. This view is used when greater interoperability is desired at the expense of precision.

CompliancemandatoryThis method is must be implemented.
MethodusePlenaryTrustView
Description

A complete view of the Trust returns is desired. Methods will return what is requested or result in an error. This view is used when greater precision is desired at the expense of interoperability.

CompliancemandatoryThis method is must be implemented.
MethoduseFederatedAgencyView
Description

Federates the view for methods in this session. A federated view will include trusts in agencies which are children of this agency in the agency hierarchy.

CompliancemandatoryThis method is must be implemented.
MethoduseIsolatedAgencyView
Description

Isolates the view for methods in this session. An isolated view restricts lookups to this agency only.

CompliancemandatoryThis method is must be implemented.
MethodgetTrust
Description

Gets the Trust specified by its Id. In plenary mode, the exact Id is found or a NOT_FOUND results. Otherwise, the returned Trust may have a different Id than requested, such as the case where a duplicate Id was assigned to a Trust and retained for compatibility.

Parametersosid.id.IdtrustIdthe Id of the Trust to retrieve
Returnosid.authentication.process.Trustthe returned Trust
ErrorsNOT_FOUNDno Trust found with the given Id
NULL_ARGUMENT trustId is null
OPERATION_FAILEDunable to complete request
PERMISSION_DENIEDauthorization failure
CompliancemandatoryThis method must be implemented.
MethodgetTrustsByIds
Description

Gets a TrustList corresponding to the given IdList. In plenary mode, the returned list contains all of the trusts specified in the Id list, in the order of the list, including duplicates, or an error results if an Id in the supplied list is not found or inaccessible. Otherwise, inaccessible Trusts may be omitted from the list and may present the elements in any order including returning a unique set.

Parametersosid.id.IdListtrustIdsa list of trust Ids
Returnosid.authentication.process.TrustListthe returned Trust list
ErrorsNOT_FOUNDan Id was not found
NULL_ARGUMENT trustIds is null
OPERATION_FAILEDunable to complete request
PERMISSION_DENIEDauthorization failure
CompliancemandatoryThis method must be implemented.
MethodgetTrustsByGenusType
Description

Gets a TrustList corresponding to the given trust genus Type which does not include trusts of genus types derived from the specified Type. In plenary mode, the returned list contains all known trusts or an error results. Otherwise, the returned list may contain only those trusts that are accessible through this session.

Parametersosid.type.TypetrustGenusTypea trust genus type
Returnosid.authentication.process.TrustListthe returned Trust list
ErrorsNULL_ARGUMENT trustGenusType is null
OPERATION_FAILEDunable to complete request
PERMISSION_DENIEDauthorization failure
CompliancemandatoryThis method must be implemented.
MethodgetTrustsByParentGenusType
Description

Gets a TrustList corresponding to the given trust genus Type and include any additional trusts with genus types derived from the specified Type. In plenary mode, the returned list contains all known trusts or an error results. Otherwise, the returned list may contain only those trusts that are accessible through this session.

Parametersosid.type.TypetrustGenusTypea trust genus type
Returnosid.authentication.process.TrustListthe returned Trust list
ErrorsNULL_ARGUMENT trustGenusType is null
OPERATION_FAILEDunable to complete request
PERMISSION_DENIEDauthorization failure
CompliancemandatoryThis method must be implemented.
MethodgetTrustsByRecordType
Description

Gets a TrustList containing the given trust record Type. In plenary mode, the returned list contains all known trusts or an error results. Otherwise, the returned list may contain only those trusts that are accessible through this session.

Parametersosid.type.TypetrustRecordTypea trust record type
Returnosid.authentication.process.TrustListthe returned Trust list
ErrorsNULL_ARGUMENT trustRecordType is null
OPERATION_FAILEDunable to complete request
PERMISSION_DENIEDauthorization failure
CompliancemandatoryThis method must be implemented.
MethodgetCircleOfTrust
Description

Gets a TrustList in the same circle, or the same level of confidence, as the given trust. In plenary mode, the returned list contains all known trusts or an error results. Otherwise, the returned list may contain only those trusts that are accessible through this session.

Parametersosid.id.IdtrustIda trust Id
Returnosid.authentication.process.TrustListthe returned Trust list
ErrorsNOT_FOUND trustId is not found
NULL_ARGUMENT trustId is null
OPERATION_FAILEDunable to complete request
PERMISSION_DENIEDauthorization failure
CompliancemandatoryThis method must be implemented.
MethodgetTrusts
Description

Gets all Trusts. In plenary mode, the returned list contains all known trusts or an error results. Otherwise, the returned list may contain only those trusts that are accessible through this session.

Returnosid.authentication.process.TrustLista list of Trusts
ErrorsOPERATION_FAILEDunable to complete request
PERMISSION_DENIEDauthorization failure
CompliancemandatoryThis method must be implemented.