This is a variation on federated identity and national AuthZ, adding a national broker to establish system-to-system trust.
The broker can carry out token checks between the resource provider and resource owner, ensuring that the request has been authorised before allowing it.
This means that the resource server no longer needs to do this check.
- provides a single way of establishing system-to-system trust
- backed by a light-weight national assurance process to make use of the national public key infrastructure
- can be built to address local needs, but within a national framework
- provides a single enforcement point for API calls flowing through the broker, ensuring nationally agreed controls are in place
If you are considering this pattern, you should be careful that
- work is required to develop a national framework, and to establish a national assessment process to assure local solutions in order to grant 'trusted' status and federate with them
- authorisation is only against nationally agreed policies, and information held nationally, meaning that local user attributes might not be taken into account