Versions Compared

Old Version 29

changes.mady.by.user Dean Woodbeck (internet2.edu)

Saved on

compared with

New Version 30

changes.mady.by.user trscavo@internet2.edu

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Consume all the SP metadata in the world!
    1. Automatically refresh InCommon metadata at least daily OR
    2. Retrieve metadata just-in-time via the Metadata Query Protocol
  2. Support SAML2 Web Browser SSO
    1. Publish a SAML2 SingleSignOnService endpoint that supports the HTTP-Redirect binding
  3. Publish long-lived, self-signed certificates in metadata
  4. Publish technical, administrative, and administrative security contacts in metadata
  5. Stabilize the following metadata elements:
    1. entityID
    2. Scope
    3. endpoint locations
  6. Support at least the following user attributes:
    1. persistent, non-reassigned identifier
      1. eduPersonUniqueId OR
      2. eduPersonTargetedID OR
      3. eduPersonPrincipalName (if non-reassigned)
    2. person name
      1. displayName OR
      2. givenName + sn (surname)
    3. email address
      1. mail attribute
  7. Stabilize the values of persistent identifiers and scoped attributes
  8. Adopt a measured attribute release process
    1. [Level 0 Interoperability] Release a persistent, non-reassigned identifier to all SPs (or at least to all SPs registered by InCommon)
    2. [Level 1 Interoperability] Release the Research & Scholarship attribute bundle to all R&S SPs (or at least to all R&S SPs registered by InCommon)
    3. [Level 2 Interoperability] Release the Essential Attribute Bundle to all SPs (or at least to all SPs registered by InCommon)
  9. Test and monitor all IdP endpoints 24x7

...