Address comments

heyams · Jan 13, 2025 · f0623df · f0623df
1 parent 23bb6fe
commit f0623df
Show file tree

Hide file tree

Showing 2 changed files with 28 additions and 23 deletions.
diff --git a/model/enduser/deprecated/registry-deprecated.yaml b/model/enduser/deprecated/registry-deprecated.yaml
@@ -0,0 +1,28 @@
+groups:
+  - id: registry.enduser.deprecated
+    type: attribute_group
+    display_name: Deprecated End User Attributes
+    brief: "Describes deprecated end user attributes."
+    attributes:
+      - id: enduser.id
+        type: string
+        brief: 'Deprecated, use `enduser.pseudo.id` instead.'
+        stability: experimental
+        deprecated: "Replaced by `enduser.pseudo.id`."
+        examples: ['QdH5CAWJgqVT4rOr0qtumf']
+      - id: enduser.role
+        type: string
+        deprecated: "Removed."
+        stability: experimental
+        brief: 'Actual/assumed role the client is making the request under extracted from token or application security context.'
+        examples: 'admin'
+      - id: enduser.scope
+        type: string
+        deprecated: "Removed."
+        stability: experimental
+        brief: >
+          Scopes or granted authorities the client currently possesses extracted from token
+          or application security context. The value would come from the scope associated
+          with an [OAuth 2.0 Access Token](https://tools.ietf.org/html/rfc6749#section-3.3)
+          or an attribute value in a [SAML 2.0 Assertion](http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-tech-overview-2.0.html).
+        examples: 'read:message, write:files'
diff --git a/model/enduser/registry.yaml b/model/enduser/registry.yaml
@@ -5,35 +5,12 @@ groups:
     brief: >
       Describes information about the end user, which can be used as a subdomain of browser, client, or user domains.
     attributes:
-      - id: enduser.id
-        type: string
-        deprecated: Replaced by `enduser.pseudo.id` attribute.
-        stability: experimental
-        examples: ['QdH5CAWJgqVT4rOr0qtumf']
-        brief: >
-          Deprecated, use `enduser.pseudo.id` instead.
       - id: enduser.pseudo.id
         type: string
         stability: experimental
         brief: >
           Pseudonymous identifier of an end user. This identifier is unique to the user but does not reveal their actual identity.
         examples: ['QdH5CAWJgqVT4rOr0qtumf']
-      - id: enduser.role
-        type: string
-        deprecated: "Removed."
-        stability: experimental
-        brief: 'Actual/assumed role the client is making the request under extracted from token or application security context.'
-        examples: 'admin'
-      - id: enduser.scope
-        type: string
-        deprecated: "Removed."
-        stability: experimental
-        brief: >
-          Scopes or granted authorities the client currently possesses extracted from token
-          or application security context. The value would come from the scope associated
-          with an [OAuth 2.0 Access Token](https://tools.ietf.org/html/rfc6749#section-3.3)
-          or an attribute value in a [SAML 2.0 Assertion](http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-tech-overview-2.0.html).
-        examples: 'read:message, write:files'
       - id: enduser.authentication.id
         type: string
         brief: "Unique identifier of an authenticated user in the system."