https://proxy.ocre.aai.geant.org/.well-known/openid-configuration


https://proxy.ocre.aai.geant.org/metadata/frontend.xml

The OCRE SP Proxy is using the eduTEAMS behind the scenes, which GEANT's implementation of the AARC Blueprint Architecture. eduTEAMS is comprised of 4 components:

eduTEAMS Proxy & Identity Hub

TheĀ  Proxy is an SP-IdP Proxy with first-class support for the OIDC and SAML protocols. It can connect SAML Identity Providers, OIDC Providers, SAML Service Providers, OIDC Resource Providers enabling teams to use their preferred identity sources and services regardless of the authentication protocol used. The eduTEAMS Proxy is responsible for aggregating the user attributes from various identity sources, enforce community and platform wide policies and provide one persistent user identifier and a harmonised set of attributes to the connected services.

eduTEAMS Discovery Service (DS)

The eduTEAMS Discovery service provides a web interface for users to search and select their preferred identity provider. It is an essential component of the platform, directly connected with the eduTEAMS Proxy.

eduTEAMS Metadata Service (MDS)

The eduTEAMS Metadata Service aggregates the metadata of all the SAML Identity and Service providers that are connected on the platform. It does so by aggregating the metadata feed of eduGAIN, while allowing the platform administrators to configure also other local or remote metadata sources. The eduTEAMS MDS is an essential component of the platform directly connected to the eduTEAMS Proxy.

eduTEAMS Membership Management Services (MMS)

The eduTEAMS MMS provide the ability to users to create virtual organisations (VO), manage these VOs, invite users to collaborate, manage registration flows, organise user to groups and assign them roles and resource entitlements as needed within the collaborations.