Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Pilot Participation

Pilot participation is reserved to current eduGAIN Participants as listed on the eduGAIN Members page, https://technical.edugain.org/status. eduGAIN delegates and deputies can nominate or acknowledge the participation of anyone on their behalf. Here you can find information on how to submit a participation request, please refer to the pilot github repository for entities requirements and technical information: https://github.com/GEANT/edugain-oidf-pilot.

Participation requests

Requests for participation should be sent by the eduGAIN delegate or deputy to support@edugain.org with the following content:

  • eduGAIN Participant name.
  • The Entity Identifier of the Federation Trust Anchor.
  • The Federation Trust Anchor public key in PEM format can be communicated in one of the following way:
    • sent as an attachment to the mail request if S/MIME signing is enabled with trusted (CAB/Forum) certificates, or
    • published on an HTTPS URL protected by trusted (CAB/Forum) certificates and pointing to the Federation Trust Anchor public key in PEM format. Please note that the HOST part of the URL is expected to insist on a domain in the remit of the organization.

Federations set up

The eduGAIN pilot team will process each request with the following process:

  1. Verify that the request is complete and the PEM key is valid.
  2. Query the configuration endpoint to obtain the Entity Configuration of the Federation Trust Anchor. The configuration endpoint is determined by concatenating the string /.well-known/openid-federation to the Entity Identifier.
  3. Verify that the Entity Configuration is signed with the same key communicated in the request.
  4. Verify that the federation signing key contained in the Entity Configuration is the same key communicated in the request.
  5. Verify that the Federation Trust Anchor is compliant with all the requirements listed above.
  6. If everything is ok, add the Federation Trust Anchor as a subordinate of the eduGAIN OIDF Pilot Trust Anchor.
  7. Communicate to the requester that all is good and they've been officially on boarded to the pilot.

eduGAIN OIDF Pilot mailing list

Participants to the pilot will be added to the mailing list <edugain-oidf-pilot@lists.geant.org> https://lists.geant.org/sympa/info/edugain-oidf-pilot

Others

On 18 June 20258 the eduGAIN Service Team organised an infoshare. Please find the materials below:

FAQ:

  • I am interested to participate in the pilot. How can I join?
  • Is there currently an Open ID Federation Technical Profile available?

Current Volunteers

FederationContactStatusTrust Anchor
AAFRussell Ianiello

UK FederationPhil Smart

SUNET

Björn Mattsson 



RCTSaaiEsmeralda Pires

KU Leuven* Philip Brusten

CANARIETom Vitez

ARNESTim Trojner Hlade

DFNWolfgang Pempe

HakaSami Silen