Versions Compared

Old Version 46

changes.mady.by.user trscavo@internet2.edu

Saved on

compared with

New Version Current

changes.mady.by.user Nicole Roy

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Div
stylefloat:right;margin-left:1em;margin-bottom:1ex;width:22em
Note

Obtain a diff of consecutively published metadata aggregates via web or email

Late in 2013, InCommon Operations introduced three new production distributes multiple production-quality metadata aggregates at the following permanent HTTP locations:

and

Note

You may also use TLS (https) to download the aggregates noted above. You are strongly advised not to depend solely on TLS for the security of your metadata downloads, and to continue the critical practice of verifying the signature on metadata according to the instructions on the Metadata Consumption page. Clients that are capable of doing so should continue to download metadata over unencrypted http.


All metadata aggregates are signed using the same metadata signing key and the SHA-256 digest algorithm. To verify the signature on an aggregate, a consumer must obtain an authentic copy of the InCommon Metadata Signing Certificate.

Note
titleUsing the IdP-only Aggregate
The IdP-only Aggregate is for SP deployments only!

Operationally, structural changes to metadata are first introduced into the Preview Aggregate and subsequently synchronized with the Main Aggregate and the Fallback Aggregate, in that order. Time between synchronization events depends on the nature of the structural change.

...

Metadata consumers choose exactly one of the above three aggregates in the pipeline depending on the immediate requirements of their deployment.

Advanced Tables - Table Plus
columnAttributesstyle="padding-left:1em;text-align:right;,style="padding-left:1em;padding-right:1em;text-align:center;,style="padding-left:1em;padding-right:1em;text-align:center;,style="padding-left:1em;padding-right:1em;text-align:center;",style="padding-left:1em;padding-right:1em;text-align:center;"

 


Availability

Stability

Reliability

Affinity

Preview Aggregate

24x7

experimental

leading edge

persistent

Main Aggregate

24x7

stable

mainstream

persistent

Fallback Aggregate

24x7

legacy

trailing edge

transient

Multiple metadata aggregates allow InCommon to deploy changes to metadata more quickly, easily, and safely.

Image RemovedImage Added

Preview Metadata Aggregate

...

The Fallback Aggregate is transient in the sense that backward compatibility is provided for a limited, predetermined period of time. This forces deployments to adjust to breaking changes to metadata albeit in a controlled environment.