On Wed, Jul 17, 2013 at 5:56 PM, Sumedha Rubasinghe <[email protected]>wrote:
> > > > On Wed, Jul 17, 2013 at 5:26 PM, Sanjeewa Malalgoda <[email protected]>wrote: > >> Hi, >> >> On Wed, Jul 17, 2013 at 4:58 PM, Lakmali Baminiwatta <[email protected]>wrote: >> >>> Hi all, >>> >>> Currently in APIM, each subscriber can choose any tier when subscribing >>> to an API. There is no way to limit avaiable tiers to a particular user. >>> This feature will allow API publisher to define which tiers are visible for >>> which roles. >>> >>> >>> Changes - to publisher >>> ======================= >>> A new UI is needed to map tiers & roles >>> >>> Changes - to store >>> ==================== >>> Based on logged in user's roles, the list of tiers being presented @ the >>> point of subscription should be filtered. >>> >> Are going to support this in user level or role level? If we need to do >> this for user level we can use user claims to store allowed tiers. >> Ex: user claim - allowedTierClaim : gold,bronze >> So when new user log into system we can load allowed tiers and show only >> related tiers. WDYT? >> > > I think we were initially thinking about getting this supported for Roles. > User level is tempting. But role level sound more scalable? > +1. This is what I meant in my earlier response. I think we are on the same page. > > >> >> Thanks, >> Sanjeewa. >> >>> >>> >>> Implication on existing subscriptions >>> ====================================== >>> If the tier has already been used in existing subscription, we should >>> not allow role based restriction to be applied until those subscriptions >>> are removed. >>> >>> Would this be a good strategy? >>> >>> Looking forward for feedback, suggestions . >>> >>> Thanks, >>> Lakmali >>> -- >>> Lakmali Baminiwatta* >>> * >>> Software Engineer >>> WSO2, Inc.: http://wso2.com >>> lean.enterprise.middleware >>> mobile: +94 71 2335936 >>> blog : lakmali.com >>> * >>> * >>> >>> _______________________________________________ >>> Architecture mailing list >>> [email protected] >>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>> >>> >> >> >> -- >> * >> * >> *Sanjeewa Malalgoda* >> WSO2 Inc. >> Mobile : +94713068779 >> >> <http://sanjeewamalalgoda.blogspot.com/>blog >> :http://sanjeewamalalgoda.blogspot.com/<http://sanjeewamalalgoda.blogspot.com/> >> >> >> >> _______________________________________________ >> Architecture mailing list >> [email protected] >> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >> >> > > > -- > /sumedha > m: +94 773017743 > b : bit.ly/sumedha > > _______________________________________________ > Architecture mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > > -- Thanks, Samisa... Samisa Abeysinghe VP Engineering WSO2 Inc. http://wso2.com http://wso2.org
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
