Seafile is a cloud storage system with file encryption, group sharing, synchronization etc. available both in open source Community and paid Pro editions. The software has potential to enable research communities secure access to potentially unlimited commercial storage resources leveraging federated authentication and authorisation. It is possible mainly because of the following features:
Additionally, the software provides some features from the point of view of access to resources:
The missing element to enable federated access to a SeaFile service is discovery service as the software as such is designed to work with single IdP. This pilot aims in testing federated access to Seafile service using community WAYF service as a proxy to multiple SAML IdPs. The approach is to configure existing PIONIER.Id WAYF service (https://aai.pionier.net.pl/WAYF) as SAML IdP for Seafile Shibboleth authentication.
Access the service at https://box.pionier.net.pl/.
Push Log In button in PIONIER ID table.
The browser redirects to PIONIER.id WAYF service.
Select your IdP.
The browser redirects to home IdP
Login using home IdP credentials.
|4.||The browser redirects back to the required service.|
The professional version of the Seafile software has been deployed and the federated login through the PIONIER.id federation is now supported by the service.
The service is available at: https://box.pionier.net.pl/
Seafile manual on Shibboleth authentication: https://manual.seafile.com/deploy/shibboleth_config.html
Shibboleth SP documentation: https://shibboleth.net/products/service-provider.html
WAYF documentation: https://www.switch.ch/aai/support/tools/wayf/