Mastodawn

So i am thinking out loud:
In the past i wanted to create an identity system, where the users could create sets of personal data like phone number(s), email adress(es), bank account(s) and physical adress(es) etc.
Then they could share grants, which are like an access control for a specific subset of those.
Could this be realised with private claims from OAuth?
Example in the next posts.
#OAuth #IdentityManagement

Show thread

chfkch

Mar 13

Example 1: I want to share my bank account, my physical address and contact (email/phone) with my internet provider. But they only get my "business" email and not private.
They get the collective bank account of my household, but not my personal one.

Should i change any of those in the future, i want my provider to be able to fetch the new data or even better, get a push notification (on their server) to fetch the updated data.

Show thread

chfkch

Mar 13

Example 2: I want some shop site to have my physical address and shop-specific email-alias, but not my phone number.

I would create a grant specific to that.

Show thread

chfkch

Mar 13

So when i am moving places, i would for example update my physical address once in this service and all necessary business partners etc. can fetch the updated data on push.

Show thread

dweinand

@chfkch Sounds a bit Like inrupt / solid to me. But I might be off here.

Show thread

chfkch

Mar 13

@dweinand hhm i cannot make alot of it from the homepage, but it seems too much aimed at corporations.
But i think it is a common goal/concept.
I want to make this for the normal user, who is fed up to keep all this stuff updated for example when you move or swtich phone/banking account or so on.

In germany there is a service from the postal service to relay mail for one year after you move (and inform the sender of the address change), but for other data i don't know.