You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The overall solution refers to management of use case participation agreements. These agreements are necessary pre-conditions for a partner to access data assets which are provided with the usage policy relating to the use case particpation agreements ("Use Case Rahmenbedingungen").
Benefit
This feature shall allow a participant to submit a use case participation agreement for approval by an operating company. In subsequent steps after the submittance and approval by the operating company a corresponding credential shall be issued by the operating company to the participatns which reflects the fact that the participant agrees to the terms & conditions of the given use case. This in turn is the basis to evaluate conformity usage policies for data access.
Scope / Acceptance criteria
+Submission of use case participation declaration (Actor: Company Admin)+
** the participant has an entry point on the portal on which she sees:
*** a list of already submitted use case participation agreements
*** for each submitted participation agreement the status of the submission. The status can be:
**** pending (waiting for confirmation by the operating company)
**** approved (confirmed by the operating company)
**** active (credential issued and available)
**** declined (not confirmed, might be e.g. because of wrong submission, missing signature etc.)
**** revoked (was active, but has been revoked)
** the participant has an entry point to submit a use case participation agreement.
The submission will involve:
*** the name / identification of the relevant use case (optional: selection box for configurable pre-defined use cases would be fine)
*** a upload facility for a {}PDF file{}. This file would be a scanned "Use Case Rahmendokument" with the signature of the signing authority of the company
+Confirmation of a submitted use case participation (Actor: CX Admin / Operating Company)+
** the CX Admin of an operating company has an entry point on the portal in which:
*** a list of submissions is provided. The list can be filtered to submissions with status "pending"
*** for a submission item the CX Admin can open the associated PDF and visually inspect it (to check e.g. signature)
*** depending on the result of the check of a submitted item the CX Admin can either approve or dissaprove the submission
**** if disapproved the item is set to status "declined"
**** if approved the the item is set to status "approved".
+Trigger of creation of "use case participation" - credential+
** for submissions which are approved an endpoint of the managed identity wallet is called (see pre-conditions)
** the call is done in synchonous manner, with a positive return code the submission item is set to the status 'active'
+Widthdrawal of "use case participation" - credential+
** the CX Admin of an operating company has an entry point on the portal in which a list of submissions is provided (see above). The list can be filtered to submissions with status "active"
** for a submission item in status "active" the CX Admin can trigger the revocation of the confirmation (resulting in revocation of the associated credential)
** When the revocation for an item is triggered on the portal, then:
*** a technical endpoint to revoke the corresponding credential is called (see pre-conditions)
*** the submission item is set to status "revoked"
Out of Scope
this feature is limited to certificates for "use case participation" - other certificates as e.g. audit results concerning envronmental or social standards are not covered here!
Preconditions
technical endpoints of the Managed Identity Wallet (to clarify: Self Description?)
** issue credential for "use case participation" (parameter: BPN-L, use_case_id)
** revoke credential for "use case participation" (parameter: BPN-L, use_case_id)
see other features for the solution (see CXAR-242, CXAR-896, ...)
Background
The overall solution refers to management of use case participation agreements. These agreements are necessary pre-conditions for a partner to access data assets which are provided with the usage policy relating to the use case particpation agreements ("Use Case Rahmenbedingungen").
Benefit
This feature shall allow a participant to submit a use case participation agreement for approval by an operating company. In subsequent steps after the submittance and approval by the operating company a corresponding credential shall be issued by the operating company to the participatns which reflects the fact that the participant agrees to the terms & conditions of the given use case. This in turn is the basis to evaluate conformity usage policies for data access.
Scope / Acceptance criteria
+Submission of use case participation declaration (Actor: Company Admin)+
** the participant has an entry point on the portal on which she sees:
*** a list of already submitted use case participation agreements
*** for each submitted participation agreement the status of the submission. The status can be:
**** pending (waiting for confirmation by the operating company)
**** approved (confirmed by the operating company)
**** active (credential issued and available)
**** declined (not confirmed, might be e.g. because of wrong submission, missing signature etc.)
**** revoked (was active, but has been revoked)
** the participant has an entry point to submit a use case participation agreement.
The submission will involve:
*** the name / identification of the relevant use case (optional: selection box for configurable pre-defined use cases would be fine)
*** a upload facility for a {}PDF file{}. This file would be a scanned "Use Case Rahmendokument" with the signature of the signing authority of the company
+Confirmation of a submitted use case participation (Actor: CX Admin / Operating Company)+
** the CX Admin of an operating company has an entry point on the portal in which:
*** a list of submissions is provided. The list can be filtered to submissions with status "pending"
*** for a submission item the CX Admin can open the associated PDF and visually inspect it (to check e.g. signature)
*** depending on the result of the check of a submitted item the CX Admin can either approve or dissaprove the submission
**** if disapproved the item is set to status "declined"
**** if approved the the item is set to status "approved".
+Trigger of creation of "use case participation" - credential+
** for submissions which are approved an endpoint of the managed identity wallet is called (see pre-conditions)
** the call is done in synchonous manner, with a positive return code the submission item is set to the status 'active'
** the CX Admin of an operating company has an entry point on the portal in which a list of submissions is provided (see above). The list can be filtered to submissions with status "active"
** for a submission item in status "active" the CX Admin can trigger the revocation of the confirmation (resulting in revocation of the associated credential)
** When the revocation for an item is triggered on the portal, then:
*** a technical endpoint to revoke the corresponding credential is called (see pre-conditions)
*** the submission item is set to status "revoked"
Out of Scope
Preconditions
** issue credential for "use case participation" (parameter: BPN-L, use_case_id)
** revoke credential for "use case participation" (parameter: BPN-L, use_case_id)
Components: CPLP
Sprints: N/A
Fix Versions: N/A
StoryPoints:N/A
Attachments:N/A
The text was updated successfully, but these errors were encountered: