/
IM BB specification release Q2 2025

IM BB specification release Q2 2025

Proposals for changing the specification.


Section 6: Functional requirements
6.1.2
Change
"The provider of that service must decide if the consumer is allowed to"
to
"The provider of that service must decide if the consumer is allowed to access the service"

6.1.3
Change
"(This is one of the main points of the security server and Information Mediator architecture.)"

to
"This is the desired situation and is one of the main principles of the Information Mediator Building Block architecture and the architecture of the Security Server"

6.2

Change
”At development time, to see which resources are available on GovStack, the administrator/developer of application A may send requests to the security server to see(OPTIONAL):”
to
”At development time, to see which resources are available on GovStack, the administrator/developer of application A may send requests to the security server to see (RECOMMENDED): ”


6.3 Pub/sub service

Change all the requirements in sections 6.3.1, 6.3.2, 6.3.3 from (REQUIRED) to (RECOMMENDED).

6.3.4
Change
”For registration via API, an application must be able to make a POST request to a service exposed by the Pub/Sub layer which defines which endpoints certain event types should be sent to (REQUIRED)”
to
”For registration via API, an application must be able to make a POST request to a service exposed by the Pub/Sub layer which defines which endpoints certain event types should be sent to (RECOMMENDED)”

6.3.5
Change all the requirements in section 6.3.5 from (REQUIRED) to (RECOMMENDED).


6.6

Change
'Busy production systems may need a scalable performance in addition to high availability. The Information Mediator Building Block supports external load balancing mechanisms to address both of these problems simultaneously. A load balancer is added in front of a security server cluster to route the requests based on a selected algorithm (OPTIONAL)'
to
'Busy production systems may need a scalable performance in addition to high availability. The Information Mediator Building Block supports external load balancing mechanisms to address both of these problems simultaneously. A load balancer is added in front of a security server cluster to route the requests based on a selected algorithm (RECOMMENDED)'.

Change
'The team in charge of deploying the security server application on their hardware must consider the network infrastructure including a load balancer, etc. The requirements for network infrastructure must be handled/defined in a (yet to exist) “Network Building Block”(REQUIRED)'
to
'

The team in charge of deploying the security server application on their hardware must consider the network infrastructure including a load balancer, etc. (RECOMMENDED). '
Here, we should think to what extent we should describe the networking infrastructure. I am not aware of any plans for creating a network building block in the near future, so we should describe this at least to some extent in this specification.