Child pages
  • Pitch for community engagement (outline)
Skip to end of metadata
Go to start of metadata
Provisioning and Integration (P&I) challenges are urgent across HE & R communities
  • P&I projects are everywhere
    • New open source registry deployments (CPR and OR) at multiple institutions are anchor tenants for IAM infra and must be wired in for P&I
    • Grouper deployment projects abound, driving new models of managing service eligibility
    • Numerous campuses are on verge of deploying major commercial offerings in this space (OIM, etc.)
    • Meanwhile COmanage, CoCoA and SURFconext packages are targeting Research VOs (complementing institutional focus elsewhere)
  • HE & R community can take full advantage of the range of current activity IFF we
    • Articulate a common functional framework within which we can discuss P&I use cases and requirements (in progress)
    • Capture use-case driven requirements across an identified set of projects
    • Document solutions emerging from these projects
    • Highlight successful aspects of specific projects to guide next round of institutional or VO projects
  • We already have adequate resources to shepherd this work (additional resources would accelerate progress)
What's in the Open Source P&I tool chest today?
  • Change-driven messaging from identity registries (CPR and OR) and Grouper
    • ActiveMQ in CPR, explorations w Grouper (including SCIM)
    • Amazon SQS, SNS as alternatives to ActiveMQ for queuing and notifications (UDub)
    • Camel routes in OR (Camel: runnable/configurable Enterprise Integration Patterns)
  • Feeding the Identity Registries from the Systems of Record
    • Batch approach for OR (Rutgers own and Unicon-developed Spring Batch for UC Berkeley OR)
    • Batch and API approaches to SOR integration in CPR
    • CIFER SOR-to-Registry APIs
  • RESTful push/pull APIs from registry (CIFER)
    • SCIM flavor for cloud services & similar cases
  • Provisioning engines
    • OpenIdM (ForgeRock) investigations at CPR & Stanford
      • Shareable connectors for specific provisioning targets
      • Extension points:
        • Camel "routes"
        • Activiti for workflows involving humans
  • Investigation/Experimentation stage:
    • ESB: Mule
    • Rules engine: Drools
  • No labels