Basic architecture
eduGAIN Components
We assume 1 eduGAIn and 5 national feds
- TA -> Roland testbed - We setup the intermedats manually
- Intermediate - Gabriels codebase includign the registration API
- TM issuers
- TMs
- eduGAIN - Only national intermediates
- National Fed Level Trustmark - Discovery, easier to resolve as compared to trust chain
- REFEDs SirtFi - must be on national level.
- VO membership - Independent TM
- RPs -> Go implementation
- OPs?
- SSP (Marko) - Would a proxy also work with the SP side in a SAML fed?
- Shib OP
- Rolands OP
- Can we proxy based on existng SAML IdPs? yes via SSP or SaToSa. - Ask Roland for readyness
You may bring your own, but you are on your own, we will not supportDo we also inject existing fed members (based on SAML metadata ) into the national federations?
- Yes but in a different setup- Resolver: Most important for RPs as this will simplify RP life.
Trust anchor based on software stack from Rolands testbed, holding 5 national federation intermediates