Re: VO Proof of Concept using Shibboleth simple attribute aggregation ready

[Roland Hedberg <roland@xxxxxxxxxxxx>]

Hi!

I just wanted people to know that I've recreated Lukas setup with a SP  
based on my SAML2 implementation in python.
Lukas graciously allowed me the use of his IdPs.

And it works !

I have a presentation at the upcomming EuroCAMP where I will talk more  
about this work.

On Sep 29, 2009, at 15:42, Lukas Haemmerle wrote:

> It seems like attribute aggregation currently is a hot topic in the
> federated identity management world :-) Although David was one day
> quicker I would like to point your attention to another approach for
> attribute aggregation, which is part of a Virtual Organizations use- 
> case
> that benefits from attribute aggregation.
>
> All of it is based on the Virtual Organization Proof-of-Concept  
> platform
> that Thomas and I announced at the GEANT3 meeting in Vienna recently.
> Slides from there can be found here:
> http://www.switch.ch/aai/downloads/20090908-JRA3-SAML-VO-Platform.pdf
>
> The PoC uses standard Shibboleth IdPs and SPs configured for simple
> attribute aggregation together with the Group Management Tool that  
> first
> had to be adapted to store data in a MySQL database.
> No black magic, hacks or code changes of any kind were necessary for
> this PoC. Currently it still uses the swissEduPersonUniqueID (opaque
> version of the eduPersonPrincipalName) as identifier for VO services  
> and
> not yet the eduPersonTargetedId that is intended to be used later on.

-- Roland