Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Task1, Pilot 2

Walk by users

Focus

Support authorized access for citizen scientists to library resources (SAML+IP to SAML with authZ)

Approach/AARC identified solution

Establish a guest SAML IdP which adds attributes to authorize non-institutional users. In addition, explore exploitation models: per library or per national library consortium deployment.

Components piloted

Shibboleth v3 for IdP with IP-based AuthZ attribute

Gain for end-users/administrators

  • More consistent interface no matter which resource is being approached
  • Ability to use this access method and at the same time maintain full privacy
  • Admin interface for librarians to scope/configure valid IP ranges

Demo

Flow

Demo admin portal
Demo user portal

Detailed technical description

AARC wiki

Documentation of components

Documentation for walk by user access component, access control wiki

Documentation of the IdP-extension to release the user's IP address 

Documentation of the portal that allows library administrators to manage their campus IP address ranges

Software source(s)

Shibboleth v3 for walk by user access

Lead

GARR/DAASI

Community partners

IT: GARR, Library
NL: UKB library consortium

Status

Close to finalization. Awaiting final phase of feedback from communities

...