Pattern 1: All Local
This is a fully local implementation of authentication and authorisation services – which might be within a single organisation, or make use of a shared regional “hub” to offer authentication and/or authorisation services between a number of local organisations.
- Can be built to specifically address local needs and evolve independently of any other wider requirements outside the local area.
- All aspects of access control managed and handled locally.
- Only provides the mechanism for sharing within a local area – expanding to other areas would require a move to another pattern (e.g. federated identities).
- Does not provide a way of accessing national data or services – these would therefore require a second mechanism (probably requiring the user to log in again).
Was this article useful?2