Versions Compared

Old Version 8

changes.mady.by.user Niels van Dijk

Saved on

compared with

New Version 9

changes.mady.by.user Michael Schmidt

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.


Ask Christos, Marcus and Uros to add stuff

Table of Contents

Participants

...

Panel
titleGN4-3 project team


#Enter the persons who are participating in the team that works on this Activity - delete this line after using the template#

NameOrganisationRole




















Panel
titleStakeholders


Name

Organisation

Role 
Christos Kanellopoulos (stale)GEANTeduTEAMS service owner

Marcus Hardt

KITProposer



#An overview of the meetings we had with stakeholders and a pointer to notes (if any)#
Panel
titleStakeholder engagements


DateName(s)OrganisationNotes
21.11.19

Christos Kanellopoulos

GÉANTInitial stakeholder kick-off
03.12.19

Lukas Hämmerle

Thomas Baerecke

SWITCH

https://docs.google.com/document/d/1qy-p6mCPxY951FphfhvioStMEDM9fRjZktpBC2Q5fBc/edit
04.12.19

Tomasz Wolniewicz

Davide Vaghetti

UMK

GARR

https://docs.google.com/document/d/1GYYMmnEKfJPOSPv-vv3e9LVDjmebLJTUDeMDDqbvLIc/edit
17.12.19--Sprint Demo 2.1
14.02.20Nicole HarrisGÉANThttps://docs.google.com/document/d/1E_P_tes4XuWn8ohXH1QRkSdx0Uy2blwEVZ2EiyRHaew/edit
19.03.20--Sprint Demo 2.3













Activity overview

Panel
titleDescription

Some systems cannot be federated easily per se (e.g. like non-web services, such as login to remote *nix machines, ...) need user accounts to be provisioned before they can login. 

We have a prototype of an instant deployment tool (FEUDAL).  It facilitates provisioning of user accounts on a per VO basis. It makes use of rabbit-MQ to instantly deploy provisioning and deprovisioning events. 

Feudal is based on OIDC: It is an OIDC client, and it simply transports the information of the /userinfo endpiont along.

Feudal is based on the concept of VOs (or authorisation Groups), i.e. the end services provide the information which VOs it supports. Feudal web fronted will only display services for provisioning to  a given user based on his VO membership.

Feudal features deprovisioning and comes with a REST interface for programmatic use.

...