What’s New in JA-SIG CAS? JA-SIG Summer Conference Denver, CO June 24 – 27, 2007.

Slides:



Advertisements
Similar presentations
MyProxy Jim Basney Senior Research Scientist NCSA
Advertisements

Open-source Single Sign-On with CAS (Central Authentication Service)
Open-source Single Sign-On with CAS (Central Authentication Service) Pascal Aubry, Vincent Mathieu & Julien Marchal Copyright © 2004 – ESUP-Portail consortium.
12 October 2011 Andrew Brown IMu Technology EMu Global Users Group 12 October 2011 IMu Technology.
MIT Lincoln Laboratory A Service-Oriented Approach to Application Development Robert Darneille & Gary Schorer WPI MQP Presentations ICS Group 10 October.
Central Authentication Service Roadmap JA-SIG Winter 2004.
METALOGIC s o f t w a r e © Metalogic Software Corporation DACS Developer Overview DACS – the Distributed Access Control System.
Eunice Mondésir Pierre Weill-Tessier 1 Federated Identity with Ping Federate Project Supervisor: M. Maknavicius-Laurent ASR Coordinator: G. Bernard ASR.
MyProxy: A Multi-Purpose Grid Authentication Service
Approaches and challenges for a SSO enabled extranet using Jasig CAS Florian Holzschuher René Peinl
Adding scalability to legacy PHP web applications Overview Mario A. Valdez-Ramirez.
By: Ansuya Chauhan.
HyperContent 2.0 JA-SIG Winter Conference December 5, 2005 Alex Vigdor, Columbia University.
National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.
UPortal and the Yale Central Authentication Service Drew Mazurek ITS Technology & Planning Yale University JA-SIG Summer Conference ‘04 Denver, CO June.
New uPortal Contributions from the University of Wisconsin-Madison Jim Helwig University of Wisconsin-Madison Eric Dalquist Unicon, Inc. JA-SIG December.
UPortal Security and CAS Susan Bramhall ITS Technology & Planning Yale University.
Introduction To Windows NT ® Server And Internet Information Server.
A Community Discussion of Google Apps Macalester College _____________________________________________ Ted Fines & David Sisk 1April 22, 2010 Associate.
JA-SIG CAS Enterprise Single Sign-On Scott Battaglia Application Developer Enterprise Systems & Services Rutgers, the State University of New Jersey Copyright.
Improving Web Application Security by Using JA-SIG CAS © Copyright Unicon, Inc., This work is the intellectual property of Unicon, Inc. Permission.
Apache Jakarta Tomcat Suh, Junho. Road Map Tomcat Overview Tomcat Overview History History What is Tomcat? What is Tomcat? Servlet Container.
Best Practices in Java Development JA-SIG Summer Conference Denver, CO June 24 – 27, 2007.
May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
UPortal 3 – What's New? JA-SIG Conference, Spring 2008 uPortal What's New? Eric Dalquist University of Wisconsin - Madison.
Central Authentication Service
Technology Overview. Agenda What’s New and Better in Windows Server 2003? Why Upgrade to Windows Server 2003 ?  From Windows NT 4.0  From Windows 2000.
What’s new in Stack 3.2 Michael Youngstrom. Disclaimer This IS a presentation – So sit back and relax Please ask questions.
Sakai/OSP Portfolio UvA Bas Toeter Universiteit van Amsterdam
PASS Migration * PASS Migration Update Part IV * PASS Beta Test Launched – Review.
University of Illinois at Urbana-Champaign A Unified Platform for Archival Description and Access Christopher J. Prom, Christopher A. Rishel, Scott W.
New uPortal Contributions from the University of Wisconsin-Madison Jim Helwig University of Wisconsin-Madison Eric Dalquist Unicon, Inc. JA-SIG December.
Web Authentication at Iowa Ed Hill Software Developer The University of Iowa.
Using Spring Security and CAS JA-SIG Summer Conference Denver, CO June 24 – 27, 2007.
CAS Lightning Talk Jasig-Sakai 2012 Tuesday June 12th 2012 Atlanta, GA Andrew Petro - Unicon, Inc.
A Community of Learning SUNGARD SUMMIT 2007 | sungardsummit.com 1 Extending SSO – CAS in Luminis Presented by: Zachary Tirrell Plymouth State University.
CAS Update Jasig 2011 Marvin Addison Susan Bramhall Andrew Petro Bill Thompson.
1 Media Production Support v1 5 May 2010 Blake Crosby June 2, 2010 Standards Documents.
LDS Account and the Java Stack. Disclaimer This is a training NOT a presentation. – Be prepared to learn and participate in labs Please ask questions.
Shibboleth: An Introduction
Kuali Rice A basic overview…. Kuali Rice Mission First and foremost to provide a consistent development framework and common middleware layer for Kuali.
Shibboleth: Installation and Deployment Scott Cantor July 29, 2002 Scott Cantor July 29, 2002.
CAS Scott Battaglia Rutgers, the State University of New Jersey.
This presentation describes the development and implementation of WSU Research Exchange, a permanent digital repository system that is being, adding WSU.
UMBC’s WebAuth Robert Banz – UMBC
PAPI: Simple and Ubiquitous Access to Internet Information Services JISC/CNI Conference - Edinburgh, 27 June 2002.
UPortal 3 RC2 PreviewJA-SIG Conference, Summer 2007 uPortal RC2 Preview Moving on Up Reviewing current work and future plans Standardizing the framework.
February, TRANSCEND SHIRO-CAS INTEGRATION ANALYSIS.
The OWASP Foundation guarding your applications Koen Vanderloock
INFSO-RI Enabling Grids for E-sciencE ARDA Experiment Dashboard Ricardo Rocha (ARDA – CERN) on behalf of the Dashboard Team.
Jasig CAS Roadmap Scott Battaglia Rutgers, the State University of New Jersey.
LDS Account and the Java Stack. Disclaimer This is a training NOT a presentation. – Be prepared to learn and participate in labs Please ask questions.
Security and Privacy for the Smart Grid James Bryce Clark, OASIS Robert Griffin, RSA Hal Lockhart, Oracle.
Shibboleth Working Group, Fall 2010 Scott Cantor, OSU Chad LaJoie, Itumi, LLC.
Shibboleth Identity Provider Version 3 Scott Cantor The Ohio State University Marvin Addison Virginia Tech.
Shibboleth Identity Provider V3 Deployment Considerations Scott Cantor (tOSU) Walter Hoehn (U Memphis) David Langenberg (U Chicago)
Google Code Libraries Dima Ionut Daniel. Contents What is Google Code? LDAPBeans Object-ldap-mapping Ldap-ODM Bug4j jOOR Rapa jongo Conclusion Bibliography.
Active Directory Domain Services (AD DS). Identity and Access (IDA) – An IDA infrastructure should: Store information about users, groups, computers and.
Migrating Single Sign On to CAS and Shibboleth George Hosler Information Technology 5/29/2013.
Office of Information Technology GT Identity and Access Management JA-SIG CAS project (introducing login.gatech.edu) April 29th,
The FederID project The First Identity Management and Federation Free Software.
Introduction  Model contains different kinds of elements (such as hosts, databases, web servers, applications, etc)  Relations between these elements.
October 2014 HYBRIS ARCHITECTURE & TECHNOLOGY 01 OVERVIEW.
Shibboleth Identity Provider Version 3
Sakai ID & Access Management
Identity and Access Management Challenges in uPortal
Prime Service Catalog 12.0 SAML 2.0 Single Sign-On Support
Central Authentication Service
Presentation transcript:

What’s New in JA-SIG CAS? JA-SIG Summer Conference Denver, CO June 24 – 27, 2007

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Who am I? I’m Scott Battaglia! Application Rutgers Java Developer for 5+ Years Lead Developer/Architect on JA-SIG CAS Committer to Acegi Security

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? What is CAS? JA-SIG CAS is an enterprise-level single sign on service for the Web

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? History CAS 3.1 released with attribute support, single log out, etc. June 2007 Minor revisions to CAS adding more support for Authentication Handlers July 2005 – May 2007 CAS 3.0 released supporting CAS1 and CAS2 protocol while providing pluggable architecture. June 2005 CAS becomes a JA-SIG project.December 2004 Initial CAS 3 talksSeptember 2004

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? CAS Deployers Your school goes here.

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Libraries/Integration Acegi Security for Spring AuthCAS (Perl Apache module) ‏ PerlCAS phpCAS for Prado (a PHP framework) ‏ for Seraph (a Java security framework) ‏ for uPortal for WebObjects for Zope Java MOD_CAS PAM_CAS ISAPI filter PL/SQL

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Agenda Supported Protocols Administrative Features Configuration Architecture Acknowledgements Future Directions Discussion

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? 1. Supported Protocols

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? CAS 1.0 / CAS 2.0 Continued support for CAS 1.0 / 2.0 Protocol Only way to get proxied authentication

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? SAML 1.1 OASIS standard XML-based Communicates –Authentication –Entitlement –Attribute

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? OpenID Decentralized framework for user-centric digital identity User name is URI – Support “dumb” mode Allows CAS clients -> OpenID clients

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? How OpenID Works

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Single Log Out Two kinds of sessions –Global CAS Session –Individual Application Sessions CAS 1/2/3 Logout ends global session CAS 3.1 “suggests” that all sessions end

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Google Accounts Integration Minimal SAML 2 support Requires Key sharing between Google Accounts Allows Google Accounts to participate in existing SSO solution.

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? 2. Administrative Features

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Services Management Optional Feature Control what services access CAS. Control what features they have access to.

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Services Management

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Services Management

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Attributes AttributeRepository defines “interesting” attributes Services Management dictates who sees what CAS sends those attributes to services

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Pseudo anonymous Support Send a persistent random identifier Only identifies user with respect to service

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? 3. Configuration

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Authentication Support Added Support for –NTLM –SPNEGO –RADIUS On top of… –LDAP –Database –X.509 –JAAS –File –…

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Maven 2 Apache project –Software project management tool –Manage build, reporting document Enforces project structure Encourages modules which means code compartmentalization Dependency management

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Ticket Registry BerkeleyDbTicketRegistry –Based on BerkeleyDb –Long Term Ticket Storage JBossCacheTicketRegistry –Distributed DefaultTicketRegistry –Simple, in-memory, single-instance CAS

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Updated Views Simpler views Provide user with more active feedback. Easier to customize for institution

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? 4. Architecture

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Performance Improvements Reduction in arbitrary object creation Removal of unnecessary synchronization Removal of unnecessary reflection usage Options for explicit configuration

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Java 5 Required Only runs on Java 1.5 Allows us to take advantage of advances to language: –Generics –java.util.concurrent –Enumerations –Minimize dependencies –JVM performance, garbage collection, etc.

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Extension Points Authentication Handlers Non-Interactive Credentials Ticket Registries Attribute Repositories Argument/Protocol Extractors Themes Internationalization

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Library Upgrades Upgrades to –Spring WebFlow –Spring Framework –Spring LDAP Leverage new features, bug fixes, and enhancements

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Internationalization Leverage Spring’s Internationalization Support Added Chinese, Russian, German, Japanese 11 languages in total!!

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Functional Tests Canoo Web Tests –Faster Development/Testing Time –Deployers can test their own instance –Find issues before deployment

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? 5. Acknowledgements

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Thanks to… Arnaud Lesueur Marvin S. Addison Julien Henry Julien Marchal Andres March Shifei Luo David D. Kilzer Andrew Petro Jan Van der Velpen Marc-Antoine Garrigue Stephen More Shoji Kajita Javier D' Accorso Bart Grebowiec

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? 6. Future Directions

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Future Directions Additional Protocol Support Internationalization Configuration/Setup Screens Advanced Monitoring Integration with Account Management Systems

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? 7. Discussion

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? CAS Mailing Lists CAS Community Discussion List – CAS Developer’s Discussion List – CAS Announcement List – announcehttps://lists.wisc.edu/read/all_forums/subscribe?name=cas- announce Links to archives, etc.: –

JA-SIG Summer Conference – June 24 – June 27, 2007 What’s New in CAS 3.1? Important Links Product Web Site – Wiki – Issue Tracker – Source Code –

Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.