SP Roadmap https://wiki.shibboleth.net/confluence/display/SHIB2/SPRoadmap Identifies “current”, “next”, and possibly “future” releases along with links.

Slides:

Advertisements

Similar presentations

PCT303 – Content Publishing in SharePoint Eugene Rosenfeld Black Blade Associates

Advertisements

Tom Sugden EPCC OGSA-DAI Future Directions OGSA-DAI User's Forum GridWorld 2006, Washington DC 14 September 2006.

Shibboleth 2.0 and Beyond Chad La Joie Georgetown University Internet2.

Reinventing using REST. Anything addressable by a URI is called a resource GET, PUT, POST, DELETE WebDAV (MOVE, LOCK)

1 G2 and ActiveSheets Paul Roe QUT Yes Australia!

WSO2 Identity Server Road Map

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.

Peoplesoft: Building and Consuming Web Services

® IBM Software Group © IBM Corporation IBM Information Server Service Oriented Architecture WebSphere Information Services Director (WISD)

Shibboleth 2.0 : An Overview for Developers Scott Cantor The Ohio State University / Internet2 Scott Cantor The Ohio.

Nikto LUCA ALEXANDRA ADELA. Nikto  Web server assessment tool  Written by Chris Solo and David Lodge  Released on December 27, 2001  Stable release:

SAML-based Delegation in Shibboleth Scott Cantor Internet2/The Ohio State University.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Oracle Application Express 3.0 Joel R. Kallman Software Development Manager.

1 Apache. 2 Module - Apache ♦ Overview This module focuses on configuring and customizing Apache web server. Apache is a commonly used Hypertext Transfer.

Python and REST Kevin Hibma. What is REST? Why REST? REST stands for Representational State Transfer. (It is sometimes spelled "ReST".) It relies on a.

The I-Trust Federation: Federating the University of Illinois Keith Wessel Identity Management Service Manager University of Illinois at Urbana-Champaign.

1 Schema Registries Steven Hughes, Lou Reich, Dan Crichton NASA 21 October 2015.

Nadir Saghar, Tony Pan, Ashish Sharma REST for Data Services.

NA-MIC National Alliance for Medical Image Computing UCSD: Engineering Core 2 Portal and Grid Infrastructure.

Technical Topics for Deployed Campuses: Web SSO Will Norris University of Southern California.

Windows Role-Based Access Control Longhorn Update

SAML 2.0 An InCommon Perspective Scott Cantor The Ohio State University / Internet2

Matthew Grove Portal Developers Workshop, February 2008 Portal integration and code reuse in portlets.

System/SDWG Update Management Council Face-to-Face Flagstaff, AZ August 22-23, 2011 Sean Hardman.

Adxstudio Portals Training

REST By: Vishwanath Vineet.

Interfederation RL “Bob” Morgan University of Washington and Internet2 Internet2 Member Meeting Chicago, Illinois December 2006.

Jasig CAS Roadmap Scott Battaglia Rutgers, the State University of New Jersey.

Shibboleth Working Group, Fall 2010 Scott Cantor, OSU Chad LaJoie, Itumi, LLC.

July 19, 2004Joint Techs – Columbus, OH Network Performance Advisor Tanya M. Brethour NLANR/DAST.

Shibboleth 1.2 Technical Overview “So you thought 1.1 was complicated…” Scott Cantor The Ohio State University and Internet2 Scott Cantor.

Google Code Libraries Dima Ionut Daniel. Contents What is Google Code? LDAPBeans Object-ldap-mapping Ldap-ODM Bug4j jOOR Rapa jongo Conclusion Bibliography.

Redmond Protocols Plugfest 2016 Ron Starr, Paul Bartos, Hagit Galatzer, Stephen Guty New and Modified Windows Protocol Documents.

Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.

DOWeR Detecting Outliers in Web Service Requests Master’s Presentation of Christian Blass.

SAML & OAuth V2 Nov 19/09. Goals Explore (useful) combinations of SAML & Oauth Builds on 2008 proposal from Ping ID for combining SAML SSO & Oauth authz.

Security Assertion Markup Language, v2.0 Chad La Joie Georgetown University / Internet2.

WSO2 Identity Server. Small company (called company A) had few services deployed on one app server.

Shibboleth Identity Provider Version 3

Alain Bethuyne Web Security Architect BNPParibas Fortis

Access Policy - Federation March 23, 2016

Mehran Ahsant, PDC, Joni Hahkala, HIP on behalf of JRA3

Federation made simple

Integrating Enterprise Applications Into SharePoint® Portal Server

Netscape Application Server

Federation Systems, ADFS, & Shibboleth 2.0

B.6 Roadmap 2013 – 2014 SDMX RI User Group Luxembourg, September 2013.

SAML New Features and Standardization Status

eduTEAMS Roadmap and Timeline,

Prime Service Catalog 12.0 SAML 2.0 Single Sign-On Support

Node.js Express Web Services

Shibboleth SP Update Spring 2012 Scott Cantor

Introduction How to combine and use services in different security domains? How to take into account privacy aspects? How to enable single sign on (SSO)

Quality Control in the dCache team.

Whether you decide to use hidden frames or XMLHttp, there are several things you'll need to consider when building an Ajax application. Expanding the role.

Representational State Transfer

Azure AD Line Of Business Application Integration

Leaving the State: Sessionless (Stateless) Authentication in D8

ESA Single Sign On (SSO) and Federated Identity Management

Service-centric Software Engineering

APACHE WEB SERVER.

Python and REST Kevin Hibma.

Techniques to Invoke Web Services from SAS

PyWBEM Python WBEM Client: Overview #2

Session Abstract This session will provide an overview of the latest improvements and enhancements made to the Ed-Fi ODS/API in 2016, as well as a preview.

9/8/ :03 PM © 2006 Microsoft Corporation. All rights reserved.

The Problem Microsoft Active Directory (AD) is used by almost every big company Microsoft AD uses Kerberos Authentication Android are forcing customers.

Iserve – Bulk Cash Deposit Kiosk

Presentation transcript:

SP Roadmap https://wiki.shibboleth.net/confluence/display/SHIB2/SPRoadmap Identifies “current”, “next”, and possibly “future” releases along with links to bug/RFE lists In-depth summaries or links to topics describing specific features under discussion or development Basically, anything that's hard to represent in Jira... Any feature discussions happen via dev mailing list

Current Release (2.4.2) Suggested update for everybody, critical update for Linux deployers Bug in User-Agent feature generates HTTP 400 errors on SOAP queries Upgrade from 2.3 otherwise very stable Shorter/simpler configuration Metadata caching and background reloads Blacklisting of weak security algorithms

Future Release 2.5 vs. 3.0 Extensions Keep piling on or package separately? Attribute resolver functionality (data munging, maybe scripting) Delegation / web service improvements Revamp audit logging Handling attribute requirements / detecting errors / privacy disclosures Discovery “lessons learned” improvements

Web Service Delegation “Early access” feature relying on IdP extension and a non-trivial custom HTTP library Browser → web site → web service flow relies on a lot of middle-tier SP information: Which IdP was used and its public key(s) Where/how to contact IdP extension endpoint User's SSO token from IdP SP's private key

Web Service Delegation cont. Goal: design an extension to eliminate sharing of state between SP and WS client library Secondary goal: offload (relative) complexity of client/IdP SOAP interaction to SP Tertiary goals: Relieve WS client of all non-HTTP responsibility by proxying web service access? Insulate client from WS security mechanism? Perhaps allow seamless integration of OAuth?

Provisoning Application Integration Weird idea in the early thought balloon stage: facilitate deployment of application plugins designed around SP A few cases in point: Confluence/Jira, Drupal, LMS tools Can we abstract the integration points with the SP into something expressable in XML or JSON to provision with? Headers/variables to access, SSO request initiation, logout, discovery, …? Maybe it's a two-way communication... Maybe this is an insane, hopeless idea... Definitely would require joint discussion/buy-in.