...
WaTTS is a token translation service. Its purposeful design is to facilitate usage and integration of services that consume "token-based" credentials with federated identitiesvarious credentials. Examples are services requiring SSH keys or services requiring the use of X.509 certificates. For this, WaTTS is can be accessed using federated identities (via OpenID Connect) and uses a plugin scheme to generate necessary credentials for the desired service. For source of federated identities that do not use OIDC, it is recommend to integrate WaTTS with one of the existing SP-IdP-Proxy solutions, as WaTTS on its own does not support SAML. This allows users to access services that support only non-federated authentication mechanisms using their federated identities. Relying Services can subscribe to the credential translation service of the Life Science AAI provided by WaTTS, allowing the users to obtain X.509 certificates based on their Life Science IDs. Using Via WaTTS, and after obtaining an initial proxy a certificate from RCauth.eu online CA, WaTTS stores the credential is stored as a proxy certificate in a trusted credential store, and subsequently provides the proxy (or more accurately, proxy of the proxy) provided to the user. User can also upload its SSH public key, with which the user can then obtain the proxy certificate via command line. Additional plugins are also present to support other services.
...