You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 5 Current »

Overview
ProposerMario Reale 
Area

IDENTITY & ACCESS MANAGEMENT

Type of work

DEVELOPMENT

Output

PROTOTYPE

HistoryAutomation of deployment and configuration of initial set of SPs for new federations
Original proposal

Magaging the relations between services and identity providers is a challange, both for emerging adopters of federation technologies, collaborative organisations and institutions alike. Typically technical complexity and a steep learning curve are the liming factors in the ability to manage a SAML or OIDC based ecosystem.

A proxy solution may help reduce the complexity of managing the environment, as it provides a single integration and organisational interface for managing the relations. Even so, current proxy products are still rather technically inclined and do not provide easy to use interface to configure the entities.

This activity takes inspiration from the prototype build in the TIM programme in the previous cycle and aims to create a (browser based) GUI to allow proxy operators to easily configure the proxy. THe proxy GUI is to be build in such a way it may be deployed independently from the proxy product. A reference implmentation will then be build for both SimpleSAMLphp and SaToSa.

Description of the activity

Create a GUI driven component to help configure endpoints and metadata for tools like SSP and SaToSa. Note: the T&I incubator expands the original proposal to create a generic configuration wizard. The user will be able to set up remote parties and endpoints. A proxy mode is just a special case where multiple endpoints are configured.

  • Describe usecases and flows
  • Describe technical requirements
  • Design GUI prototypes
  • Design architectire for proxy product independent solution
  • Implement SSP module for entities & endpoints configuration
  • Implement SaToSa component entities & endpoints configuration
Ownership & Utilisation

The following parties will use the results of this activity:

T&I Service-
R&E CommunityThe TI-wizard will be publicly available to federation operators.
External PartyThe module will be provided to the SSP developers.


Results & Deliverables

The following results were created and delivered:

  • No labels