1) APIs for Entity Registry, (or any other APIs by Category Name) that we are ready to deliver by Tech Exchange
Definitive TIER API Guideline document
List of TIER APIs to be delivered
Grouper permission and policy management
SoR to Registry/ODS
Registry to Grouper: Registry is authoritative source of subjects
Registry to manage Basis Groups and memberships in Grouper
Provisioning
Consent-informed Attribute Release (CAR)
External API authored by Marlena; Presentation to TIER-API prior to their review of the API:
Certificate API?
Idea that InCommon have an API for certificates.
With Comodo API we/campuses are locked in.
Is there an expert who can help? JimJ will help with the proxy that talks to Comodo.
2) Define and implement an event-driven messaging approach (asynch architecture, to complement the more synchronous API-based approach
3) Guidelines and Recommendations on Security Models for API Authentication and Authorization
Co-develop guidelines and recommendation with InCommon TAC OIDC WG and REFEDs WG
Demonstration relying on a first version of the Client-Service Registry
4) Entity Registry
Refine data model (AI - Warren)
More robust Group demonstration,
SCIM - user… (AI - ? )
Midpoint Install - support for i and ii
JimJ has packaged MidPoint and an integrated OpenLDAP into a container so we can implement Warren and Ben's work on the Thin Registry as a start
Provisioning is a strength of Midpoint that we want to test out
Perhaps use a Canvas connector for this.
Implementation to support requirements for Provisioning in the WG
COmanage Install - support for c.i through c.iv.
Simple identity matching and related features
5) Person Registry and ODS connection
TIER HAS to do the API for identity data a la ODS. Longer run we’ll need an implementation package for those APIs.
Demonstrate Person data APIs (using the registry, ODS, group repository to populate the user SCIM schema.
6) Grouper
Building a training course for Grouper, leveraging both the Grouper Deployment Guide and Bill Thompson and Chris Hyzer pre-conference Grouper training session at Apereo.
More advanced demos at Tech Ex
7) Provisioning: Canvas API connector(s) for midPoint and/or COmanage - see above 2.3.b
8) Response to Packaging Good/Needs Work discussion (get that ready to send to community and take remediation action) - starting now in Packaging
9) Documentation Next Steps based on Feedback. - starting now in packaging (for component and operations environment)
Ben - Consideration for COmanage Deployment Guide or more like screen shares and web cases. Not sure that the GDG approach is possible
Paul - looking at using COmanage in TIER/InCommon Shibboleth Training as an SP integration example
Would like to offer trainees either Grouper or COmanage as SP integration examples
Marlena: Before GS (back in January), I proposed the idea of a "Quick Start Install Guide" for IdP V3. It depends on a TIER installer. This was "on the plate" pre-GS, but may not be anymore. I'll check with Steve Z.
- Paul - New InCommon updated training is just starting to gel. Will have an installer but not sure exactly what form that will take.