Guidelines for registering OIDC Relying Parties in AAIs for international research collaboration
Summary
The most prominent protocol that should be supported along with SAML in the R&E sector is OpenID Connect (OIDC). OpenID Connect is becoming a widely accepted standard in both the commercial and the R&E sectors.
Relying Parties, or Clients, registration to the OP (OIDC Provider) is a fundamental part of the OIDC workflow, and most of all Dynamic Client Registration (1). Dynamic Client Registration is a powerful and effective way to enable new relying parties, but it has no attached processes to define the trust between the client and the OP.
OpenID Connect Federation 1.0 Draft 3 (2).
(1) https://openid.net/specs/openid-connect-registration-1_0.html
(2) http://openid.net/specs/openid-connect-federation-1_0.html
Links
Working docs
https://docs.google.com/document/d/1aPRllOI1lWWUM2I84ClF2Q8ewCl7hk1nvV0n7bCTI3k/edit?usp=drivesdk
Final PDF
To be published
Meetings schedule and Minutes
Date | Location | Agenda | Minutes |
---|---|---|---|
14:30 CEST | https://webconf.vc.dfn.de/aarc-jra1 | First AARC2 JRA1.3 meeting | 2017-07-21 AARC2-JRA1.3B Meeting notes |