Capabilities endpoint

Technical Overview

The Capabilities Endpoint is a vital feature for service providers which offers a comprehensive overview of the capabilities and available features of an iSHARE party. This endpoint returns an iSHARE-signed JSON Web Token (JWT) that provides detailed information about the supported versions, roles, and features of the service provider.

Hence, the Capabilities Endpoint enhances interoperability and data sharing across diverse systems by offering a clear overview of what services are available, how they can be accessed, and the requirements for their use

The Core Functionality of Capabilities Endpoint:

The Capabilities Endpoint serves as a standardised interface that enables entities within the iSHARE Trust Framework to discover and interact with each other's services and capabilities. This provides querying information about available data-sharing services, including their features, access requirements, and operational details, which are:

Service Discovery: This allows users to identify and access various data-sharing services available within the ecosystem.

Capability Information: This provides detailed descriptions of the functionalities and conditions for using individual services.

Standardised Interaction: This ensures consistent and reliable communication between various systems (data owners, data providers, Authorization Registry, Service Provider/Consumer, Identity Provider, building a data space) through adherence to standardised protocols.

How is the Capabilities Endpoint Functionality Implemented?

The Functionality of the Capabilities Endpoint is implemented through a combination of RESTful API interfaces and standardised data models. These APIs allow for querying and retrieving information about available services, including their capabilities, access requirements, and usage conditions. In this process, the iSHARE Trust Framework ensures that all interactions are secure, consistent, and compliant with data-sharing standards.

Key aspects of the implementation include:

• API Specifications: Uses the RESTful API architecture for a detailed specification outline on how to interact with the endpoint, including request formats, response structures, and error handling.

• Data Models: Uses Standardised data models to describe service capabilities and requirements, ensuring consistent interpretation of data across different systems.

• Security Measures: Authentication and authorization mechanisms are integrated for secure access to the endpoint, ensuring that only authorised entities can interact with the data and services.

Practical Implementation Steps for the Capabilities Endpoint

1. Send the Request: To access the capabilities endpoint, follow these steps:

• GET Request: Use the URL https://isharetest.net/capabilities.

• Authorization (Optional): Include an Authorization header with a bearer token if Required.

• Format: Authorization: Bearer <access_token>

1. Receive the Response: The endpoint will respond with a JSON Web Token (JWT) containing capabilities information. The content and structure of the JWT depend on whether an access token is provided.

Without Access Token: The response will include details of public endpoints only, including general features and the Access Token endpoint.

With Access Token: The response will include both public and restricted endpoints which may include more sensitive or specialised features.

Understand the JWT Structure: The JWT includes the following details:

1. capabilities_info: Contains information such as:

• party_id: The unique identifier of the party.

• ishare_roles: The roles assigned to the party (e.g., ServiceProvider).

• supported_versions: Versions of the service that are supported.

• supported_features: Information on available features.

1. public: Lists features accessible to everyone, including:

• id: Unique identifier for the feature.

• feature: Name of the feature.

• description: A brief overview of the feature.

• url: Link to access the feature.

1. restricted (optional): Lists features that are accessible only with a valid access token, similar to public features but with restricted access.

How Capabilities Endpoint Benefits Business and Data Sharing Use Cases

For businesses and data-sharing use cases, the Capabilities Endpoint offers several advantages:

• Enhanced Visibility: Businesses can gain insights into what services and features are supported, helping them make informed decisions about integrating with or utilising different iSHARE Foundation services.

• Feature Discovery: Organisations can easily identify both public and restricted features of iSHARE Trust Framework allowing them to understand what functionalities are available and how to access them.

• Role and Version Information: The endpoint provides details about the roles assigned to the iSHARE party (e.g., ServiceConsumer, ServiceProvider) and the versions of the endpoints they support, which is crucial for compatibility and integration planning.

Recent Updates in the Capabilities Endpoint:

The capabilities endpoint and its JWT structure are designed to evolve with iSHARE standards and practices. As the new versions of iSHARE or additional features are introduced, the capabilities information provided through this endpoint will be updated accordingly. This ensures users always have access to the most current and relevant information about available services and features.

• Enhanced Security Features: Improvements in authentication and authorization protocols to address security challenges and ensure data protection.

• Extended Data Models: Updates to the data models to support additional types of services and capabilities, improving the flexibility and applicability of the endpoint.

• Performance Optimisation: Enhancement of API performance to handle higher volumes of requests and provide faster response times.

What are the Future Possibilities for the Evolution of the Capabilities Endpoint?

The Technology related to the Capabilities Endpoint is expected to evolve in several ways:

• Improved Data Exchange: Future updates could include enhancements to data exchange protocols and formats, making the capabilities endpoint even more robust in providing capabilities information.

• Dynamic Capabilities: The endpoint may evolve to offer more real-time information, reflecting changes in capabilities as they occur rather than at scheduled intervals.

• Advanced Interoperability: As the iSHARE ecosystem grows, the endpoint may integrate with other data-sharing standards and frameworks, providing a more seamless experience for users.

• Enhanced Security Measures: Advances in security measures may lead to improved authentication and authorization mechanisms, impacting how access tokens and JWTs are handled.