Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create RC2 proposal #30

Merged
merged 6 commits into from
Jun 19, 2024
Merged

Create RC2 proposal #30

merged 6 commits into from
Jun 19, 2024

Conversation

jgarciahospital
Copy link
Collaborator

What type of PR is this?

Add one of the following kinds:

  • correction
  • documentation

What this PR does / why we need it:

Proposing RC2 to include documentation

Which issue(s) this PR fixes:

Fixes #24

@jgarciahospital jgarciahospital mentioned this pull request Jun 10, 2024
Closed
bigludo7
bigludo7 approved these changes Jun 11, 2024
View reviewed changes
code/API_definitions/population-density-data.yaml Outdated
CAMARA guidelines defines a set of authorization flows which can grant API clients access to the API functionality, as outlined in the document [CAMARA-API-access-and-user-consent.md](https://github.com/camaraproject/IdentityAndConsentManagement/blob/main/documentation/CAMARA-API-access-and-user-consent.md). Which specific authorization flows are to be used will be determined during onboarding process, happening between the API Client and the Telco Operator exposing the API, taking into account the declared purpose for accessing the API, while also being subject to the prevailing legal framework dictated by local legislation.
It is important to remark that in cases where personal user data is processed by the API, and users can exercise their rights through mechanisms such as opt-in and/or opt-out, the use of 3-legged access tokens becomes mandatory. This measure ensures that the API remains in strict compliance with user privacy preferences and regulatory obligations, upholding the principles of transparency and user-centric data control.

Population Density Data API ensures the usage of anonymized information and do not trear personal data neither as input nor output.
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

and do not treat personal data

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

solved

code/API_definitions/population-density-data.yaml Outdated
It is important to remark that in cases where personal user data is processed by the API, and users can exercise their rights through mechanisms such as opt-in and/or opt-out, the use of 3-legged access tokens becomes mandatory. This measure ensures that the API remains in strict compliance with user privacy preferences and regulatory obligations, upholding the principles of transparency and user-centric data control.

Population Density Data API ensures the usage of anonymized information and do not trear personal data neither as input nor output.
Therefore, the acceess to Population Density Data API is defined as Client Credentials - 2-legged as described in [CAMARA-API-access-and-user-consent.md - Client Credentials](https://github.com/camaraproject/IdentityAndConsentManagement/blob/main/documentation/CAMARA-API-access-and-user-consent.md#client-credentials)
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Therefore, the access to

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

as new PR

sachinvodafone
sachinvodafone reviewed Jun 17, 2024
View reviewed changes
code/API_definitions/population-density-data.yaml
@@ -88,6 +88,23 @@ info:
The API provides one endpoint that accepts POST requests for retrieving population
density information in the specified area.

# Authorization and Authentication
CAMARA guidelines defines a set of authorization flows which can grant API clients access
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There should be an additional line break between the heading and the content; otherwise, the content does not display properly in the Swagger editor.

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Apart from this, I would suggest to have examples for all three options (SUPPORTED_AREA, PART_OF_AREA_NOT_SUPPORTED, and AREA_NOT_SUPPORTED) in the response (200) example. Currently, only an example for "SUPPORTED_AREA" is provided.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

both included now in #32 , can you please confirm there to merge in this same PR?

@jgarciahospital jgarciahospital merged commit 7f93ec7 into main Jun 19, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sachinvodafone sachinvodafone sachinvodafone approved these changes

@bigludo7 bigludo7 bigludo7 approved these changes

@maheshc01 maheshc01 Awaiting requested review from maheshc01 maheshc01 is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Discussion on API access mechanism
3 participants
@jgarciahospital @bigludo7 @sachinvodafone