| Proposer | Mario Reale |
|---|---|
| Area | IDENTITY & ACCESS MANAGEMENT |
| Type of work | DEVELOPMENT |
| Output | PROTOTYPE |
| History | Automation of deployment and configuration of initial set of SPs for new federations |
Magaging the relations between services and identity providers is a challange, both for emerging adopters of federation technologies, collaborative organisations and institutions alike. Typically technical complexity and a steep learning curve are the liming factors in the ability to manage a SAML or OIDC based ecosystem.
A proxy solution may help reduce the complexity of managing the environment, as it provides a single integration and organisational interface for managing the relations. Even so, current proxy products are still rather technically inclined and do not provide easy to use interface to configure the entities.
This activity takes inspiration from the prototype build in the TIM programme in the previous cycle and aims to create a (browser based) GUI to allow proxy operators to easily configure the proxy. THe proxy GUI is to be build in such a way it may be deployed independently from the proxy product. A reference implmentation will then be build for both SimpleSAMLphp and SaToSa.
Create a GUI driven component to help configure commonly ised proxies like SSP and SaToSa.
- Describe usecases and flows
- Describe technical requirements
- Design GUI prototypes
- Design architectire for proxy product independent solution
- Implement SSP module for proxy configuration
- Implement SaToSa component for proxy configuration
The following parties will use the results of this activity:
| T&I Service | - |
|---|---|
| R&E Community | The proxy will be publicly available to federation operators. |
| External Party | The module will be provided to the SSP developers. |
The following results were created and delivered: