Item | Time | Who | Presentations | Notes |
Welcome and introduction | 10 mins | Maya Madrid (CEF eDelivery Business Owner, DG CNECT H4) |
View file |
---|
name | CEFeDeliveryWorkingGroupMeeting28062021.pdf |
---|
height | 250 |
---|
|
| - Maya Madrid welcomed the participants, introduced the agenda and provided a brief overview of the action’s objectives, previous and upcoming work.
|
Update on ISA² IPS REST API profile: - Presentation of the changes since last meeting
- Round table for feedback
- Timeline and next steps
| 40 mins | Bogdan Dumitriu, Jerry Dimitriou, Vlad Veduta (CEF eDelivery Technical team, DIGIT D3) | - Bogdan Dumitriu introduced the work that was done on the REST API profile since the previous meeting and gave the floor to Jerry Dimitriou who presented the new sections of the REST API profile (the Editorial and Structural Changes, Signature Support, Common Semantics, Multipart, API endpoint mapping with MEP, User Message Definition, and Signal Message Definition) from a technical perspective (cf. slides).
- Roberto Polli asked whether the profile also has content-type. Bogdan confirmed.
- During the roundtable, Roberto explained that about the general layout of the document, he think that there is a lot to explain in regards of how HTTP works. Roberto suggested that DIGIT do some work to separate the explanation about how HTTP and REST works by design, and which are the actual requirements for the implementation. Roberto explained that he found it really hard to identify which were the normative part and which were the explanations related to the JAVA technology. Roberto also suggested to do additional work on the security side (regarding HTTP routine).
- To reply to Roberto's comments, Bogdan explained that we also tried to have in mind the target audience. Bogdan explained that it might be useful for people that are not experts in reading standards (developers, etc.), to repeat a bit things and point out the most important rules. Bogdan added that a profile was done (which status quote we recommend to be used or shouldn't be used). On this points, Jerry confirmed and asked Roberto if we should remove and just provide references or being less strict when providing things that come from other standards.
- Roberto suggested tp split the document with an introductory part (that can be descriptive) and having the normative part more short.
- Sven Rasmussen pointed out that the document provides relevant information to guidelines and specifications. Regarding Roberto's remark on normative part, Sven explained that they tend to think that this profile is a little too descriptive and they would have prefer to be more normative in some areas. Sven added that it's a good specification but more work should be done on it (it's a bit unclear how work such as the open data directive implementation on APIs could benefit from this). Sven explained that a number of choices should be made to make it really helpful for cross-border interoperability.
- Bogdan explained that Open data is a sample topic from REST APIs and that the team concentrate mainly on the REST API part but clearly they could be work done on the open data area that can somehow be made coherent with the specifications provided.
- Bogdan presented the timeline.
- Roberto explained that Italy is looking for a way to safely exchange with clients credentials without using passwords.
- To answer one question raised by Roberto, Vlad Veduta explained that this would work with even asymmetric key for identifying and authorising the client application (passwords were only used because it's the simplest to implement)
- Vlad suggested to set up a call to discuss this topic further with Roberto.
|
REST API Pilot: | 30 mins | Bogdan Dumitriu, Joze Rihtarsic (CEF eDelivery Technical team, DIGIT D3) | - Bogdan and Jerry did the demonstration of the REST API Pilot on National Broker.
- Roberto asked whether it could be possible to see the code. Bogdan answered that it will be shared by end of July/mid August.
|
Break (10 mins) |
Pilot Domibus integration with CEF EBSI (blockchain): - Practical demontrationdemonstration
| 30 mins | Bogdan Dumitriu, Joze Rihtarsic (CEF eDelivery Technical team, DIGIT D3) | View file |
---|
name | CEFeDeliveryWorkingGroupMeeting28062021.pdf |
---|
height | 250 |
---|
|
| Bogdan did the demonstration of the Pilot Domibus integration on Azure. |
Update on JRC's work on API guidelines for government: - Security & Privacy essentials highlights
- Empirical analysis contractual conditions of APIs
| 60 mins | Monica Posada (JRC B6), Lorenzino Vaccari (Consultant) | View file |
---|
name | 20210628_API4IPS_WG6_final.pdf |
---|
height | 250 |
---|
|
| 30min: MP: - Monica Posada presented an update on the JRC’s work on API guidelines for government Monica also presented the indicative timeline. and the accomplishments of 2021. (cf. slides).
- Lorenzino Vaccari presented the technical essentials (Security, Privacy, and Traceability) and the APIs privacy and traceability.
- Monica then presented the Legal and organisational essentials (API Legal and organisational considerations, legal framework, and API terms of service) (cf. slides).
- Maya and Bogdan finally thanked all participants and closed this last working group meeting.
|