Roles
This section covers Roles in Raidiam Connect. They are part the platform configuration available in Reference Data.
More information on Reference Data can be found here.
Role and Function
- Authorisation Domain Roles within the Secure Data Sharing Ecosystem are regulatory roles defined under specific Authorisation Domains.
- These roles serve various purposes, integral to the functionality and classification within the Raidiam Connect ecosystem.
Defining Rules within Raidiam Connect
- Roles can dictate rights and permissions, such as the ability to register certain APIs or specific types of servers.
API Consumption and Access
- Some roles define the set of APIs an organisation can consume. In such cases, these roles should be linked to OIDC (OpenID Connect) Scopes, facilitating authentication between an OpenID Provider and an OpenID Client.
Classifying Organisations
- These roles help in differentiating types of organisations, such as distinguishing between common organisations and technical service providers.
Assignment Process
- Once established in the Reference Data, these regulatory roles can be assigned to any organisation with the corresponding Domain Claim. The assignment process adheres to the policies of each specific ecosystem.
String Association
- An Authorisation Domain Role is a free text string associated with an Authorisation Domain, offering flexibility in defining and naming roles.
Geographic Considerations
- It is advised that Authorisation Domain Roles should not include regional or country identifiers directly.
- Instead, these geographical associations should be indicated by the Issuing Authority's country of registration or through specific Domain Role Authorisations, which can assign Domain Roles to particular geographic areas.
Examples
Authorisation Domain | Authorisation Domain Role | Description |
PSD2 | PISP | Payment Initiation Service Provider |
PSD2 | AISP | Account Information Service Provider |
Open Banking | DADOS | Data Provider or Data Consumer |
Retail Banking | Data Provider | |
Commercial Banking | Data Receiver | |