1) APIs to deliver by Tech Exchange
- Definitive TIER API Guideline document
- Grouper permission and policy management
- SoR to Registry/ODS
- Registry to Grouper: Registry is authoritative source of subjects
- Registry to manage Basis Groups and memberships in Grouper
- Provisioning
- Consent-informed Attribute Release (CAR)
- External API authored by Marlena
- Presentation to TIER-API prior to their review of the API
- Certificate API
- An API for server certificate management for use by InCommon
- JimJ will help with a Comodo proxy
2) Define and implement an event-driven messaging approach
- asynch architecture, to complement the more synchronous API-based approach
3) Guidelines and Recommendations on Security Models for API Authentication and Authorization
- Co-develop guidelines and recommendation with InCommon TAC OIDC WG and REFEDs WG
- Demonstration relying on a first version of the Client-Service Registry
4) Entity Registry
- Refine data model (AI - Warren)
- SCIM - user
- Midpoint Install
- JimJ has packaged MidPoint and an integrated OpenLDAP into a container so we can implement Warren and Ben's work on the Thin Registry as a start
- Provisioning is a strength of Midpoint that we want to test out
- Perhaps use a Canvas connector for this.
- Implementation to support requirements for Provisioning in the WG
- COmanage Install - support for 3.a through 3.d
5) Simple identity matching and related features
- Single package used by both midPoint and COmange
6) Person Registry and ODS connection
TIER HAS to do the API for identity data a la ODS. Longer run we’ll need an implementation package for those APIs.
Demonstrate Person data APIs (using the registry, ODS, group repository to populate the user SCIM schema.
7) Grouper
Building a training course for Grouper, leveraging both the Grouper Deployment Guide and Bill Thompson and Chris Hyzer pre-conference Grouper training session at Apereo.
More advanced demos at Tech Ex
8) Provisioning: Canvas API connector(s) for midPoint and/or COmanage
- see above 4.3 and 4.4
9) Response to Packaging Good/Needs Work discussion
- Ready to send to community and take remediation action - starting now in Packaging
10) Documentation Next Steps based on Feedback
- Starting now in packaging (for component and operations environment)
Ben - Consideration for COmanage Deployment Guide or more like screen shares and web cases. Not sure that the GDG approach is possible
Paul - looking at using COmanage in TIER/InCommon Shibboleth Training as an SP integration example
Would like to offer trainees either Grouper or COmanage as SP integration examples
Marlena: Before GS (back in January), I proposed the idea of a "Quick Start Install Guide" for IdP V3. It depends on a TIER installer. This was "on the plate" pre-GS, but may not be anymore. I'll check with Steve Z.
- Paul - New InCommon updated training is just starting to gel. Will have an installer but not sure exactly what form that will take.