JRA3-T1 323 PoC Documentation.docx
Objectives
Within this task we will evaluate the introduction of Grouper for a cross/inter organizational use.
The activities will be brought within the GN3+ activities by Andrea Biancini, Marco Malavolti and Maria Laura Mantovani from GARR.
Grouper will be used to manage in a centralized way (yet eventually permitting delegation):
- Groups of users
- Authorization attributes for users
Activities overview
The main activities for this subtask will be:
- Better definition of the possibilities for an authorization process within different services and communities.
- Realization of a PoC to prove possible integrations of existing services with Grouper.
- Documentation and dissemination of results achieved.
Planning
| Activity name | Description | Start month | End month | Status |
|---|---|---|---|---|
1. Documentation phase | Study phase finalized at gaining knowledge on the tools and processes to be implemented. | 01/2014 | 03/2014 | DONE |
| 2. Feasibility | Produce the first deliverable and introduce the context of authorization processes. | 03/2014 | 05/2014 | DONE |
| 3. Design | Produce the architectural design and describe the technical choices to be tested in the PoC. | 06/2014 | 09/2014 | DONE |
| 4. Build | Realize the PoC with the integration of the three SPs. | 10/2014 | 12/2014 | DONE |
| 4.1 MediaWiki | Integrate Grouper with a wiki SP. | 10/2014 | 11/2014 | DONE |
| 4.2 Moodle | Integrate Grouper with a Moodle SP. | 11/2014 | 12/2014 | DONE |
| 4.3 GARRbox | Integrate Grouper with GARRbox SP. | 11/2014 | 12/2014 | DONE |
| 5. Finalize | Produce dissemination material. | 01/2015 | 05/2013 | DONE |
Project Documents
The project activities, so far, produced the following relevant documentation:
Project planning: JRA3-T1 WI 1.2 - Activity plan.mpp
Presentation to the face-2-face meeting in Stockholm: F-2-F Meeting Stockholm.pptx
Feasibility report: JRA3-T1 321 Feasibility Report.docx
Architecture for Discovery: JRA3-T1 322 Architecture for Discovery.docx
PoC Documentation: JRA3-T1 323 PoC Documentation.docx
Installation guide to install Grouper and configure it as an AA in a SAML federation: HOWTO Install Grouper on Ubuntu Linux 12.04
Installation guide to integrate MediaWiki with Grouper: HOWTO Integrate MediaWiki with Grouper on Ubuntu Linux 12.04
Installation guide to integrate Moodle with Grouper: HOWTO Integrate Moodle with Grouper on Ubuntu Linux 12.04
Other Documentation
Other relevant information and additional documentation can be found here:
- Grouper wiki page: Grouper Wiki on Internet2 site
- Documentation about how to configure an Attribute Authority with Shibboleth software: saml-aa-shibboleth.pdf
Information page for the Grouper VOOT Connector: Grouper Voot Connector from Internet2 site
Presentation of task activities at the Internet2 Technology Exchange 2014: https://meetings.internet2.edu/2014-technology-exchange/detail/10003423/
Code Contributions
The code developed within this activity has been shared with the community. In particular:
- VOOT connector for Grouper
The VOOT connector for Grouper has been shared with Internet2.
The code entered in the Grouper 2.2.1 release in November 2014.
The documentation about the connector is available here: https://spaces.internet2.edu/display/Grouper/Grouper+Voot+Connector
The code for the connector is available on Internet2 GitHub account: https://github.com/Internet2/grouper/tree/master/grouper-misc/grouper-voot - MediaWiki Shibboleth authenticator
The modification implemented to permit the management of the isMemberOf attribute in the Shibboleth authenticator for MediaWiki have been released to the extension manager.
Pull request sent on GitHub in November 2014, waiting for merge in the official code for the extension.
The documentation page on MediaWiki documentation site has been updated here: https://www.mediawiki.org/wiki/Extension:Shibboleth_Authentication
The code has been shared with the extension manager on his GitHub account: https://github.com/kir-dev/mediawiki-shibboleth-authentication - Moodle enrolment plugin for VOOT
The enrolment plugin created to retrieve coure and enrolment information from VOOT has been submitted as a JIRA task to the Moodle staff.
The JIRA task, submitted on November 2014, is available here: https://tracker.moodle.org/browse/CONTRIB-5413
The forum page on Moodle forum is available here: https://moodle.org/mod/forum/discuss.php?d=275042
The code developed is available on GitHub here: https://github.com/biancini/moodle-enrol_voot