diff --git a/authorization_services/topics/auth-services-overview.adoc b/authorization_services/topics/auth-services-overview.adoc index bb3a3e3bd0..f61440fb1c 100644 --- a/authorization_services/topics/auth-services-overview.adoc +++ b/authorization_services/topics/auth-services-overview.adoc @@ -3,6 +3,7 @@ :tech_feature_name: Authorization Services include::templates/techpreview.adoc[] +include::templates/authz-service-deprecated-features.adoc[] {project_name} supports fine-grained authorization policies and is able to combine different access control mechanisms such as: diff --git a/topics/templates/authz-service-deprecated-features.adoc b/topics/templates/authz-service-deprecated-features.adoc new file mode 100644 index 0000000000..33a01663d9 --- /dev/null +++ b/topics/templates/authz-service-deprecated-features.adoc @@ -0,0 +1,24 @@ +ifeval::[{project_product}==true] +[WARNING] +==== +In future releases we will update our User-Managed Access(UMA) implementation to conform +to the latest version of the UMA specification, version 2.0. + +Due to differences between versions 1.0 (currently supported) and 2.0 of UMA, we are deprecating specific functionalities, +in order to keep compliance with the new version. Here is a list of deprecated features: + +* *Entitlement API* + + This REST API will be removed in future releases in favor of a more OAuth2 based way to obtain permissions from the server using a specific grant type. This grant type + is based on UMA 2.0 with extensions to make it work without permission tickets. This will have the same behavior as the Entitlement API. + +* *Authorization API* + + This REST API was removed by UMA working group in version 2.0. As a consequence, we will be removing it too. It will + be replaced by a specific OAuth2 grant type, as defined by UMA 2.0 specification. + +Other related changes will occur with the Policy Enforcer, Authorization Client Java API and configuration. Changes to these are minimal, specially regarding policy enforcer configuration. + +We'll be updating docs accordingly, specially on how to migrate to the new version. +==== +endif::[]