...
- (A, m) Definitive TIER API Guideline document; The excavation, sifting and winnowing are likely to be the labor intensive bits.
- (B, s) Evaluate need for Grouper permission and policy management
- (A, m) SoR/Registry/ODS/Groups (for TechEx needs; Ultimately it will end up being Large)
- (A, s) Registry to Grouper: Registry is authoritative source of subjects (LDAP, JDBC, API later?)
- (A, s) Provisioning (for demo purposes, based on UW-Madison Global Summit demo)
- (A, s) Consent-informed Attribute Release (CAR)
- External API authored by Marlena
- Presentation to TIER-API prior to their review of the API
- (B, m) Certificate API
- An API for server certificate management for use by InCommon (check with ChrisHubing and JimJ)
- JimJ will would help with a Comodo proxy
3) Define and implement an event-driven messaging approach
- (A, l) Asynch architecture, to complement the more synchronous API-based approach
- Messaging model where we only send identifiers of changed objects is probably small
Demo: Grouper changelog publishes events onto an AMQP message transport. A provisioning/de-provisioning message consumer (perhaps via midPoint) adds/removes people to an external system based on changes in group membership.
Demo: “Human Resource” system puts HR events on a subscribable message queue; Message subscriber reflecting changes into Person Registry
...