View document revision history.
Edit a user account. This includes creating, deleting, editing
User Account Management - Create new user account on Identity Provider (also edit, delete, …).
Perform basic account management operations. This process can be quite complex depending on the identity provider in use and the security policies that need to be addressed.
The use case and interaction presented here assumes a simplistic operation that relies only upon email verification for the new account creation. A more sophisticated interaction might include administrative approval of the new account, selection of an identity provider to use, and assignment of roles based on the level of approval and the nature of the selected identity provider (i.e. trustworthiness of identity provider).
System is operational and policy is in place to accept new users.
A new user account is requested.
New account is created (if accepted)
Access control rules for new account are specified
Account information is replicated across CNs
Figure 1. Interactions for use case 15.
By default, accounts have no real privileges. To get higher privileges, users may have to jump through more hoops (such as verifying their association with a project/institution)
Presumably, if we are using external identity providers this user account management functionality isn’t provided by the CN. Right? (PEA)