BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC:...
Transcript of BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC:...
![Page 1: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/1.jpg)
BOF2326 Open Source Identity and Access
Management Expert Panel Part IV
October 27, 2015
JavaOne
San Francisco
![Page 2: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/2.jpg)
Session Objectives
Learn about Open Source IAM products.
Share ideas on what needs to be done in the future.
Ask the experts questions about Open Source IAM product usage.
JavaOne, San Francisco 2015 2
![Page 3: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/3.jpg)
Moderator
3 JavaOne, San Francisco 2015
Shawn McKinney • Systems Architect • PMC Apache Directory Project • Engineering Team
![Page 4: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/4.jpg)
Panelists
4 JavaOne, San Francisco 2015
• Igor Farinic, Senior Software Engineer, Cofounder, Evolveum
• Les Hazlewood, Cofounder and CTO, Stormpath
• Misagh Moayyed, Software Engineer, Unicon, Inc
• Bill Thompson, Director, Digital Infrastructure, Lafayette College
![Page 5: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/5.jpg)
Agenda
• Each Panelist gets five minutes.
• Q&A
IMAGE FROM: HTTP://EVENTS.LINUXFOUNDATION.ORG/EVENTS/APACHECON-NORTH-AMERICA
5 JavaOne, San Francisco 2015
![Page 6: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/6.jpg)
Les Hazlewood, CTO
![Page 7: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/7.jpg)
Successful Adoption
• OSS = GitHub = Tools & Collaboration
• Super clean REST & SDK APIs
• Coarse Grained APIs (use case scalability)
• Integrations, integrations, integrations!
• Documentation is more important than almost
anything else
JavaOne, San Francisco 2015
![Page 8: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/8.jpg)
THANK YOU
JavaOne, San Francisco 2015
![Page 9: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/9.jpg)
JavaOne, San Francisco 2015 9
![Page 10: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/10.jpg)
JavaOne, San Francisco 2015 10
![Page 11: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/11.jpg)
100% Open source solution
JavaOne, San Francisco 2015 11
![Page 12: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/12.jpg)
Identity and access management
12
![Page 13: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/13.jpg)
Open Source Identity Ecosystem
13
![Page 14: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/14.jpg)
Ecosystem • Cooperation instead of domination
– Cooperative marketing, R&D support – Partners add value
• Cloud, integrated solutions, managed services, extensions, plugins, connectors, ...
• Pure open source model – Contributions are welcome
• Distributed development – Code created by several development teams
JavaOne, San Francisco 2015 14
![Page 15: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/15.jpg)
Resources
• Identity ecosystem home page
– http://www.identity-ecosystem.org
• Identity ecosystem Google Group
– https://groups.google.com/forum/#%21forum/identity-ecosystem
JavaOne, San Francisco 2015 15
![Page 17: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/17.jpg)
Bill Thompson
• Rutgers, Princeton
• CAS PMC, CAS 3.x Architecture
• Unicon IAM Practice Director
• Lafayette College, Director Digital Infrastructure
JavaOne, San Francisco 2015 17
![Page 18: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/18.jpg)
Lafayette College IAM • OpenLdap • CAS • Shibboleth • Grouper • PCC • Sponsored accounts, self-service, provisioning,
mfa,…
JavaOne, San Francisco 2015 18
![Page 19: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/19.jpg)
U.S. Higher Education & Research
• FIFER -> OSIaM4HE -> CIFER -> TIER
• Trusted Identities in Education & Research
• Grouper, Shibboleth, COmanage
• TIER APIs
• Coordinated effort on policy, process, capabilities
JavaOne, San Francisco 2015 19
![Page 20: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/20.jpg)
Misagh Moayyed
• Unicon, IAM Architect
• CAS, Shibboleth, Grouper Committer
• TIER Developer
JavaOne, San Francisco 2015 20
![Page 21: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/21.jpg)
Recent Trends in IAM
• Dynamic configuration
– Focus on deployer; not the developer
• MFA, HA, Risk-based AuthN
• Enterprise AuthZ Strategy; RBAC
• IAM Console; Person Registry
JavaOne, San Francisco 2015 21
![Page 22: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/22.jpg)
Q&A
JavaOne, San Francisco 2015 22
![Page 23: BOF2326 Open Source Identity and Access Management Expert ... · •CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT, Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm](https://reader030.fdocuments.in/reader030/viewer/2022041117/5f2b852d7dee12330435b549/html5/thumbnails/23.jpg)
Related Sessions • CON3568 - Federated RBAC: Fortress, OAuth2 (Oltu), JWT,
Java EE, and JASPIC – October 27, 11:00 am - 12:00 pm | Hilton—Plaza Room B
• CON2324 – A Practical Guide to Role Engineering – October 27, 2:30 p.m. | Hilton—Plaza Room B
• CON2323 - The Anatomy of a Secure Web Application Using Java Redux – October 28, 3:00 pm - 4:00 pm | Hilton—Plaza Room A
• CON2325 - RBAC-Enable Your Java Web Applications with Apache Directory Fortress – October 29, 1:00 pm - 2:00 pm | Hilton—Plaza Room A
JavaOne, San Francisco 2015 23