Hi, On Wed, Jul 17, 2013 at 4:58 PM, Lakmali Baminiwatta <[email protected]>wrote:
> Hi all, > > Currently in APIM, each subscriber can choose any tier when subscribing to > an API. There is no way to limit avaiable tiers to a particular user. This > feature will allow API publisher to define which tiers are visible for > which roles. > > > Changes - to publisher > ======================= > A new UI is needed to map tiers & roles > > Changes - to store > ==================== > Based on logged in user's roles, the list of tiers being presented @ the > point of subscription should be filtered. > Are going to support this in user level or role level? If we need to do this for user level we can use user claims to store allowed tiers. Ex: user claim - allowedTierClaim : gold,bronze So when new user log into system we can load allowed tiers and show only related tiers. WDYT? Thanks, Sanjeewa. > > > Implication on existing subscriptions > ====================================== > If the tier has already been used in existing subscription, we should not > allow role based restriction to be applied until those subscriptions are > removed. > > Would this be a good strategy? > > Looking forward for feedback, suggestions . > > Thanks, > Lakmali > -- > Lakmali Baminiwatta* > * > Software Engineer > WSO2, Inc.: http://wso2.com > lean.enterprise.middleware > mobile: +94 71 2335936 > blog : lakmali.com > * > * > > _______________________________________________ > Architecture mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > > -- * * *Sanjeewa Malalgoda* WSO2 Inc. Mobile : +94713068779 <http://sanjeewamalalgoda.blogspot.com/>blog :http://sanjeewamalalgoda.blogspot.com/<http://sanjeewamalalgoda.blogspot.com/>
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
