OpenConext Niels van Dijk, Technical Product Manager SURFconext Utrecht, VAMP, Sept 2012
OpenConext platform OpenConext platform 1. Federated IdM (SAML2) 2. Groups Open Open Conext Conext 3. 'Portal' technology (OpenSocial Gadgets) 4. Collaboration tools
Concepts - Identity Federations SAML2 and 5 attributes - Guest identities GuestID & OpenID based - Groups SURFteams & external sources, OpenSocial Group API - OpenSocial Social Data API, Gadgets API and oAuth - Gadgets Gadgets provide 'presence' in campus or collaboration environments
Identity federations Source: David Simonsen, WAYF
'Guest' users → Not part of SURF(federatie)! → International federations – eduGAIN (Europe) – Internet2 – REFEDS → Other suppliers of identities
Virtual IdP
Virtual IdPs Why? Collaboration: Many commercial SPs only support • single SAML endpoints Domestication: groups already included • Maintainance: VO can manage the IdPs, SPs only • needs 1 vIdP configured What? Combine several IdPs into one virtual entity • Use groups to bind users to vIdP • Optimized WAYF • Bind specific VO attributes • VO != vIdP •
Groups demo
OpenSocial ? - General purpose web integration technology ('Gadgets') - Open 'Social Data' API for exchanging information on people, groups, activities, etc (Javascript and REST API) - But also: - Lightweight, '2.0' complient and 'Easy' - Open standard, browser based components - Vendor neutral & platform independent - Large user community wide spread adoption → - Uptake moving from Social Networks to R&E and Enterprise
OpenSocial - overview OpenSocial - overview App’s Virtual Organization Consumers App’s Virtual Organization Consumers ‘Social Network’ Social Network’ ‘
OpenSocial - Gadgets OpenSocial - Gadgets Gadget API Gadget API <?xml version="1.0" encoding="UTF-8" ?> <Module> <ModulePrefs title="Hello World!"> <Require feature="opensocial-0.8" /> </ModulePrefs> <Content type="html"> <![CDATA[ Hello, world! ]]> </Content> </Module> - Browser based - Browser based - Lightweight - Lightweight - Optimized for the internet - Optimized for the internet - Can be anywhere - Can be anywhere
OpenSocial -4 OpenSocial -4 Social Data API: Social Data API: Provides API for exchanging ‘social data’, e.g.: Provides API for exchanging ‘social data’, e.g.: - People & Profiles (attributes) - Groups & Relationships - Activities & messages - Shared applications - Authentication (oAuth) (oAuth)
Social Data API: Social Data API: Groups & VOOT Groups & VOOT REST API: https://api.surfconext.nl /social/people/urn:collab:person:surfnet.nl:niels /nl:surfnet:diensten:konijn JSON { "entry":[ { "id":"urn:collab:person:surfnet.nl:niels", "displayName":"Niels van Dijk" }, { "id":"urn:collab:person:surfnet.nl:wladimir", "displayName":"Wladimir Mufty" }, { "id":"urn:collab:person:test.surfguest.nl:frko", "displayName":"Mook Narf" } ], "startIndex":0, "totalResults":3, "itemsPerPage":20 }
Native Interfaces Alfresco/Liferay… Reference Portal “Showcase” Institutional Portal intern/external apps Supporting services: • SURFfederatie • SURFteams SURFmedia FileSender BBB ELOs (Sakai) Stud. Adm. Resources Liferay Alfresco Confluence WebEx Mendeley Drupal … … SURFnet Institutions Commercial Vendors
https://portal.surfconext.nl → http://wiki.apache.org/incubator/RaveProposal https://os.surfconext.nl → http://shindig.apache.org/ https://engine.surfconext.nl → http://code.google.com/p/corto/ https://serviceregistry.surfconext.nl → http://code.google.com/p/janus-ssp/ (SURFteams) https://www.surfteams.nl → http://www.internet2.edu/grouper/
Showcase portal demo •
OpenConext Sources OpenConext Sources Github: https://github.com/organizations/OpenConext http://www.openconext.org
Questions? niels.vandijk@surfnet.nl
Recommend
More recommend