Story | As the developer of a disciplinary research data portal, I want to use the central Fedora repository on campus and its web API. However, many objects in the repository are restricted. As a trusted third-party application, I would like to forward user credentials, such that authorization for my portal is identical to authorization for the main repository site. Without this I cannot connect to a repository containing protected objects unless I duplicate authorization in all my front-end applications, in whatever language, etc.. (This duplication of authorization would make my application far less trustworthy.) |