| Date | 1st February 2024 |
| Documents Version | 1.3 |
| API-Version | 1.8.x - 1.9.x |
This document describes the functional specifications for the Pryv.io middleware system: the capabilities and functions that the system must be capable of performing.
This document applies only to Pryv.io distributed under Enterprise and Open Pryv.io releases.
Access | A set of permissions relative to a user account resources. The access is identified by an Access Id and presented to the API as an Access token. See Accesses concept. |
|---|---|
Access Token | A string of characters used for transacation that require Authorization. An acces token is linked to one Access Token, the content of a token must remain a secret and is set along with each request. Access Tokens are the primary identifier for the AUTHOR of an API call. |
Data Subject | As part of personal data reglementations and policies such as GDPR or HIPAA, refers to any individual who can be identified directly or indirectly by a subset of data, either identifier or factors specific to a person’s identity. By extension, the person whose data is collected, held or processed. On Pryv.io, each individual’s data is held on a per Data Subject User Account. Data Subject is also refered as User. |
This section describes the functional requirements associated with a specific feature. Each functional requirement specifies functions that a system or component must be able to perform and that must be present for the user to be able to use the services provided by the feature.
Pryv.io is a middleware which aims to provide personal data management.
As a middleware, Pryv.io does not provide User Interfaces (UI), nor physical storage or infrastructure. The system is composed of several components being:
One or multiple core components: responsible for the core functionalities such as data storage and access control.
One or multiple register components: responsible for linking a data subject’s storage to the corresponding core component responsible for its data management.
REQ_CON_HTTPTitle | The system shall be accessible through an HTTP API |
|---|---|
Desc | Access to the system is done using a Web API. |
Refs |
REQ_DATA_DEFTYPETitle | The system shall provide default data types validation |
|---|---|
Desc | Default data types are available in the system for which content is validated. |
REQ_DATA_CUSTTYPETitle | The system shall accept custom data types |
|---|---|
Desc | It is possible to define custom data types. |
REQ_DATA_CUSTVALTitle | The system shall allow to define custom type validation |
|---|---|
Desc | It is possible to define validation rules for custom-defined types. |
See: Streams concept
REQ_STREAM_BASETitle | The system shall permit Streams management through the specified actions |
|---|---|
Desc | The following actions are provided by the system to manage Streams:
|
See: Events concept
REQ_EVENT_BASETitle | The system shall permit Events management through the specified actions |
|---|---|
Desc | The following actions are provided by the system to manage Events:
|
REQ_EVENT_ATTACHMENTSTitle | The system shall permit to Add, Update and Delete files on Events |
|---|---|
Desc |
Each part of the life cycle is further described.
REQ_DLC_BASETitle | The system shall manage all data life cycle parts as described here |
|---|---|
Desc | The following actions are provided by the system to manage the data life cycle:
|
REQ_DLC_COLLECTTitle | The system shall allow data input through multiple sources |
|---|---|
Desc | The system ensures that data can be collected from multiple sources through its HTTP API. Data Sources can be:
|
REQ_DLC_STORETitle | The system shall ensure data storage |
|---|---|
Desc | The system stores collected data records and associated information on physical storage. |
REQ_DLC_INTEGRITYTitle | The system shall add data integrity hash on attachments, events and accesses. |
|---|---|
Desc | If the corresponding setting is activated, the system will compute a content hash integrity hash on attachments, events and accesses. This hash shall be used:
|
REQ_DLC_USETitle | The system shall provide data retrieval and aggregation from different sources |
|---|---|
Desc | The system provides retrieval of data independently from the source with a
|
REQ_DLC_AGGTitle | The system shall provide methods to aggregate data from multiple subjects |
|---|---|
Desc | The model of Streams and Events is designed to easily merge data from multiple subjects. |
REQ_DLC_DELTitle | The system shall ensure deletion of data |
|---|---|
Desc | The system provides the following information to check the existence of an item:
|
REQ_ACC_SELECTTitle | The system shall provide granular access per data subject |
|---|---|
Desc | The system provides the following parameters to define the permissions of Accesses:
Read and Write levels are provided at Stream and Tag levels |
REQ_ACC_CONTRACTTitle | The system shall provide storage of contractual terms relative to an Access |
|---|---|
Desc | The system provides extra properties for each Access to store contractual terms. These terms should be relative to the permissions of an Access. If terms are displayed to a user during an Access request flow and accepted, the contractual terms are stored as a proof of Consent. |
REQ_ACC_ENFORCETitle | The system shall enforce access control |
|---|---|
Desc | The system:
|
REQ_ACC_BASETitle | The system shall permit accesses management through the specified actions |
|---|---|
Desc | The following actions are provided by the system to manage Accesses:
|
REQ_ACC_REQUESTTitle | The system shall allow the external services (Apps) to request access to data by means of access control |
|---|---|
Desc | Access request and enforcement flow involves the following actors with specific actions:
|
REQ_ACC_TYPETitle | The system shall provide Personal, App and Shared type of Accesses |
|---|---|
Desc | The system provides Personal, Apps and Shared Accesses. |
Refs |
REQ_ACC_DELEGATETitle | The system shall provide delegation of access control |
|---|---|
Desc |
|
REQ_ACC_REGISTERTitle | The system shall provide management for received Accesses at a user level |
|---|---|
Desc | The system provides Followed Slices to manage received Accesses with the following actions:
|
Refs |
REQ_NOTIF_EVENTTitle | The system shall provide notification capabilities for changes at Event level |
|---|---|
Desc | The system provides an Event change notification when the following occurs at Event level:
|
REQ_NOTIF_STREAMTitle | The system shall provide notification capabilities for changes at Stream level |
|---|---|
Desc | The system provides a Structure change notification when the following occurs at Stream level:
|
REQ_NOTIF_LISTENTitle | The system shall provide listener registration capabilities |
|---|---|
Desc | The system provides Websockets and Webhooks based implementations to register a listener. |
REQ_USER_BASETitle | The system shall permit user management through the specified actions |
|---|---|
Desc | The following actions are provided by the system to manage Users:
|
REQ_USER_LOGINTitle | The system shall provide authentication of a user upon login |
|---|---|
Desc | The system provides authentication on login with a userId/password pair. |
REQ_USER_LOGOUTTitle | The system shall provide logout |
|---|---|
Desc | The system provides invalidation of authorization. |
REQ_USER_EMAILTitle | The system shall provide email property management |
|---|---|
Desc | The system provides email property management at a User level:
|
REQ_USER_EMAILIDTitle | The system shall provide retrieval of userId provided a email address |
|---|---|
Desc | The system provides discovery of userId by email. |
REQ_USER_LISTTitle | The system shall provide a list of Users (Data Subjects) |
|---|---|
Desc | The system provides a list of users registered on the platform with the following properties:
|
REQ_USER_INV_MANYTitle | The system shall provide multiple usage invitation tokens |
|---|---|
Desc | The system can be provided a list of invitation tokens that can be used multiple times. |
REQ_USER_PROFILE_PRIVATETitle | The system shall provide a storage of properties at a private user level |
|---|---|
Desc | The system provides storage of key/value pairs at user account level only available for Personal Accesses. |
REQ_USER_PROFILE_PUBLICTitle | The system shall provide a storage of properties at a public user level |
|---|---|
Desc | The system provides storage of key/value pairs at user account level available publicly. |
REQ_USER_PROFILE_APPTitle | The system shall provide a storage of properties at an App access user level |
|---|---|
Desc | The system provides storage of key/value pairs at app level only available by App Access. |
REQ_SYSTEM_HWRE_OSTitle | The system shall run on a UNIX operating system |
|---|---|
Desc | The following UNIX operating systems are supported:
|
REQ_SYSTEM_HWRE_CONTAINERTitle | The system should be packaged in a container for delivery and deployment |
|---|---|
Desc | The system is delivered packaged in Docker containers |
Refs |
REQ_SEC_NOAUTHTitle | The system shall store in log files unauthorized API calls |
|---|---|
Desc | Unauthorized API calls are logged on the host operating system using syslog. |
REQ_SEC_PASSTitle | The system shall support password policy rules |
|---|---|
Desc | Rules for password complexity (length, character categories), age (minimum, maximum i.e. expiration) and reuse (i.e. history) can be enabled in the platform settings. |
REQ_SEC_AUTHTitle | The system shall store in a log file authorized API calls |
|---|---|
Desc | Authorized API calls are logged on the host operating system using syslog with mechanisms to identify the Access token that was used. |
REQ_SEC_COMTitle | The system shall provide encryption for all inboud communications |
|---|---|
Desc | The system is provided with a component ensuring SSL termination. This component can be replaced by the customer. |
REQ_SEC_ENCTitle | The system shall provide mechanisms for client-side encryption |
|---|---|
Desc | The data model supports client-side encryption by encapsulating encrypted data into the |
Refs |
REQ_AUDIT_AUTHORTitle | The system shall provide auditability of data edition |
|---|---|
Desc | Events, Streams and Accesses expose the date of modification and used Access token. The goal is to be able to answer the what and when questions, provided a specific who. |
REQ_AUDIT_CALLSTitle | The system shall provide auditability of all API calls per Access token |
|---|---|
Desc | All HTTP calls POST, PUT, GET, DELETE are logged on the host operating system using syslog with mechanisms to identify the used Access token. The goal is to be able to answer the what and when questions, provided a specific who. |
REQ_BCKP_BASETitle | The system shall be fully recoverable using the latest backup available |
|---|---|
Desc | The system’s data shall be recoverable from backup files. |