...
eduTEAMS is intended to help research collaborations manage access to their services where there are users in multiple institutions or countries, and where access toe services also depends on an individualsindividual's role or status within a collaboration.
...
eduTEAMS benefits national identity federations by enabling their infrastructures to more easily serve complex federated authorization needs without increasing individual national investment.
How is eduTEAMS different from e-Infrastructures like EUDAT, EGI, INDIGO DataCloud, ...
- eduTEAMS consists of a set of services that are all fully relying on eduGAIN
There is not a single eduTEAMS service but multiple independent but harmonized services including:- The eduTEAMS Identity Hub, an Identity Provider for users without federated login
- eduTEAMS Member Registration, a platform that allows managing groups and processes
- eduTEAMS Discovery Service, a service that allows one to easily custom-tailor the list of organisations that users can choose from to log in
- eduTEAMS is free in the Basic version
The Basic version provides everything that a small to medium-sized research community would need to start collaborating. If this is not enough, the Advanced version offers more features at moderate costs. The Advanced version is not free to ensure its sustainability. - eduTEAMS is using open source products that are freely available
The products used for the current components are CoManage, SaToSA and the CESNET Discovery Service (tbc). - eduTEAMS is open in the sense that web services can be connected to the Member Registration service
This allows these services to consume authorization information (e.g. group membership).
There are multiple protocols that can be used to access authorisation information (e.g. SAML via AttributeQueries, VOOT, Oauth)
For most other comparable e-Infrastructure services this is not easily possible. - eduTEAMS was created and is operated by the people who created eduGAIN
The experts who created eduTEAMS also helped create the national identity federations and eduGAIN.
...
- eduTEAMS is providing web services only
Other similar e-Infrastructures offer additional ways of authentication (e.g. X.509 in case of EGI), which can also be used for non-browser protocols and authentication. This, however, often also introduces complexity and additional credentials to manage. Because eduTEAMS (via eduGAIN) relies on institutional login only, users won't need another username/password than the one they already were given by their home organisation (i.e. university, research institute). - eduTEAMS is open to all research communities
Other e-Infrastructures were created with a particular research community or particular purpose. Therefore, they often are custom tailored to these communities needs and requirements, which might be limiting for others.
...
How eduTEAMS Works
The Basic eduTEAMS service combines work flow components provided by COmanage with a SAML Attribute Authority, the VOOT Protocol and Oauth in order to provide information to the service provider to make an authorisation decision. It also provides a choice of authentication possibilities, from a classic federated Identity Provider within eduGAIN to a social identity such as a Google ID via the Identity Hub.
...