On 01/12/2018 12:54 PM, Gregg Reynolds wrote: > Looking for more info on this. Anybody have a use case or two? Sample code? > > For example, in a household. Clients with admin role can turn things on or > off. Mom and Pop might use multiple devices to control the network. Kids > cannot. Ok. Why use roles instead of just authenticating each device? If > you assert a role your device must still be authenticated, no?
A "role" feels more natural for granting/denying rights than a device. The Whizzo Corp Whole-Home-Controller can presumably be used by many people, so who gets to do what with it? As could "the TV Remote". Let's say Pop programs some restrictions into the TV for the kids using the remote. If one of the kids picks up the remote, if access is entirely device-based, they can just undo that, no? Current TVs address that by hiding that function behind an extra layer of authentication (usually a PIN) - think of that as the "Can Change Filters" role. _______________________________________________ iotivity-dev mailing list [email protected] https://lists.iotivity.org/mailman/listinfo/iotivity-dev
