Versions Compared

Old Version 1

changes.mady.by.user Davide Vaghetti

Saved on

compared with

New Version Current

changes.mady.by.user Davide Vaghetti

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Goal

This two day course will tell you all you need to know (and more) about the next generation identity management and authorization protocols and its constituent components (OAuth2/JW*/OIDC/UMA).
Part of the course is a more practical look at relevant tools and libraries (in Python and/or Java)

By the end of the course participants will:

  • Know how OpenId Connect (OIDC) and OAuth2 -the open standard for Authorization- work and why.
  • Know the basics of the building blocks
  • JSON Web Encryption (JWE), JSON Web Signing (JWS) and JSON Web Tokens (JWT), collectively referred to as JW* 
  • Also gain knowledge of User Managed Access (UMA)
  • Be able to work with the relevant OIDC tools/libraries for your own development (environment)

...

Interoperability tests between the existing OIDC fed implementations.

Agenda


Workplan

Implementations

OPs:

  • federation aware pyOP
  • oidcfed (minifed)
  • ShibOP
  • SaToSa

RPs:

  • IOS
  • Android
  • python RP (minifed)
  • PHP (Constatin)

Federation setup

  • different scenarios:
    • University federation
    • NREN federation
    • GEANT federation
  • multiple federations:
    • OP part of fed A, B, C
    • RP part of fed D, E, B

What to test

  • dynamic provider configuration discovery and dynamic client registration within a federation
  • auth flows

Expected results

A matrix of interop tests outcomes.

Registration

 

Info
titleRegistration

Please register your attendance for the OIDCfed Hackathon here:


https://eventr.geant.org/events/2755

...

Start: Thursday 30 November 2017 around 09:00
End: Friday 1 December 2017 around 17:00 

Trainers

...

Transport

Useful links

Metropolitan transport company (ATAC): http://www.atac.roma.it/index.asp?lingua=ENG

...

hotel website


Please note: nearby the course hackathon location there are also many B&Bs.

Costs

The course it self is free of charge to members of the NREN community

For GN4-2 Project Members

Travel & Expenses:

Travel and accommodation funding covers participants of the GÉANT GN4-2 Project (Training Task). It is to cover reasonable costs of travel and accommodation for the purpose of attending the course.
The process is that any participant will pay for their own travel and accommodation then claim and be repaid these costs from their own NREN under their own  expenses policy. The NREN in turn claims these costs in their monthly reclaim with the Reference NA1-T6 (Training Task) and the course title in the description line.

The GÉANT project is unable to pay individuals directly. 

Manpower:

Manhours are payed by your GN4-2 task(s) - Ask permission of your task- or activity-leader.

More information / organisation

...

Davide Vaghetti - davide.vaghetti@garr.it - Local host / Subtaskleader OIDCfed


Maarten Kremers - maarten.kremers@surfnet.nl - Taskleader Next-generation T&I
Ian Barker - ian.barker@geant.org - GN4-2 training
Davide Vaghetti - davide.vaghetti@garr.it - Local host