Scenario 2B: Agreements required by resources owners

A similar use case to 2A is where a resource’s owner has attached additional conditions around accessing/using a resource, and individual users must agree to a licence before they are granted access. For example, users may be obliged to agree to use a resource only for educational or non-profit purposes, or to observe copyright


This can be implemented using eduPersonTargetedID; that is, this attribute can be used to identify repeat visits by the same user (subject to the restrictions on attribute re-assignment described above). SARoNGS uses such an approach, based on a registration process where users provide additional information beyond that supplied by the IdP. However, it may still be worth JISC negotiating at the national level particular values on eduPersonEntitlement in these cases.


The UKDA (together with EDINA and MIMAS) has implemented a process whereby users are allowed to access distributed data collections when they have signed appropriate terms and conditions . In this mechanism, a central SP sets the eduPersonEntitlement value for the other SPs, which is conveyed to other SPs without the need for SPs to share attributes (which is not allowed). Ross agreed to share this solution.


Proposed action:


None at present.



3 votes
Idea No. 14