Goal
This two day course will tell you all you need to know (and more) about the next generation identity management and authorization protocols and its constituent components (OAuth2/JW*/OIDC/UMA).
Part of the course is a more practical look at relevant tools and libraries (in Python and/or Java)
By the end of the course participants will:
- Know how OpenId Connect (OIDC) and OAuth2 -the open standard for Authorization- work and why.
- Know the basics of the building blocks
- JSON Web Encryption (JWE), JSON Web Signing (JWS) and JSON Web Tokens (JWT), collectively referred to as JW*
- Also gain knowledge of User Managed Access (UMA)
- Be able to work with the relevant OIDC tools/libraries for your own development (environment)
...
Interoperability tests between the existing OIDC fed implementations.
Implementations
OPs:
- federation aware pyOP
- oidcfed (minifed)
- ShibOP
- SaToSa
RPs:
- IOS
- Android
- python RP (minifed)
- PHP (Constatin)
Federation setup
- different scenarios:
- University federation
- NREN federation
- GEANT federation
- multiple federations:
- OP part of fed A, B, C
- RP part of fed D, E, B
What to test
- dynamic registration
- auth flows
Expected results
A matrix of interop tests outcomes.
Registration
| Info | ||
|---|---|---|
| ||
Please register your attendance for the OIDCfed Hackathon here: https://eventr.geant.org/events/2755 |
...