About this document: Agenda and notes are kept in the same document, a separate copy of the document is maintained for each meeting. Please add agenda points before the meeting. Action items created in previous meeting and all other unresolved action items are kept in the document. Please tick off any completed items.
Meeting link: https://meet.google.com/rsf-cqaq-eyq at 9:30am CET
Attendees
Ain Aaviksoo (Deactivated) (meeting facilitator)
Benjamin Balder Bach (weekly note keeper and time keeper)
Meeting Note
Agenda | Presenter | Discussion |
---|---|---|
Action points from last week | ||
Updates from TC meeting (fixed) | (ad-hoc) | |
Spec 1.1 updates in GitBook | ||
Gherkin scenario writing discussion | Everyone | Specific questions discussed from Ain’s work on Gherkin Scenario drafting document |
Additional roadmap item discussion: Configuration for callers of APIs: RBAC for agreements? | Ain Aaviksoo (Deactivated) added as comment Benjamin Balder Bach has an idea for a follow-up | |
Non-functional security requirements for ID and consent? | Should we add inputs to general Non-functional security requirements regarding consent? Training requirements for staff? | |
Social Cash Transfer | ||
Question from Sasi: is there any way to that multiple parties can interact with each other based on a broader agreement rather than a one to one agreement? | postponed for next meeting | Note keepers notes: We’ll probably have to take this one up at a later meeting because we didn’t get to an action item on this one. |
Payment Use-Case | Ain Aaviksoo (Deactivated) | What are consent-related aspects of the Payment UC? |
Scope and service registry? | sasi Ain Aaviksoo (Deactivated) | What are our next actions on registering required scopes for BB services? |
“Consent management” definition | Ain Aaviksoo (Deactivated) | We renamed “Consent Management BB” to “Consent BB”. Is there a useful definition of “consent management” that we can apply? |
New Action Items
Action Items from previous meetings
- Presentation of API endpoints, mocks and tests for technical committee meeting Thursday Ain Aaviksoo (Deactivated) (blocked / reminder)
- Compliance concept - Ain Aaviksoo (Deactivated) (blocked / reminder)
- We need a meeting around verifying or gathering input from the Working group on the sequence diagram in BB Interaction Flow Ain Aaviksoo (Deactivated) will call for this.
- Ain Aaviksoo (Deactivated) schedule to review Social Cash Transfer Use Case.
- Benjamin Balder Bach look at previous notes to embed OpenAPI in GitBook and send a note to Ramkumar
- Ain Aaviksoo (Deactivated) add and maintain definitions for subjects of Gherkin scenarios
- Get GitBook invite for Philippe Page
- Philippe Page sign up to GitBook via GitHub or tell Ain Aaviksoo (Deactivated) what your existing signup email is.
- Ain Aaviksoo (Deactivated) forward a question about
- Benjamin Balder Bach create a variety of simple Gherkin scenarios for registering an individual so it’s clear that the Consent BB doesn’t care about the type of ID and how it stores external references.
- Philippe Page Create a Jira issue discussing to create a confluence page that has new scenarios which can illustrate why a modular system like GovStack benefits from using Consent IDs that aren’t directly mapped to functional IDs. Ultimately to mature into specification, maybe Gherkin scenarios.
- Ain Aaviksoo (Deactivated) consider if the decision to have “external ID” and “external ID type” referencing Individuals is relevant for the Key Desicion Log (if it’s not already there)