oidc-deploy - Re: proposed focus for oidc-deploy; jan-mar 2019
Subject: OIDC Deployment Working Group
List archive
- From: Steven Carmody <>
- To:
- Subject: Re: proposed focus for oidc-deploy; jan-mar 2019
- Date: Wed, 16 Jan 2019 11:23:59 -0500
- Ironport-phdr: 9a23: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
I think that suggestion makes sense, for several reasons.
This effort could initiate a self-supporting community around using the GÉANT OIDC extension. Consequently, we shouldn't limit publicizing this effort to just I2; we should tell the world about it.
I think that having documentation that is at least partially organized around use cases (eg this is how to use it with mobile apps, etc) would be a tremendous help to campuses! Yes, there's a lot of smart people out there. But, they don't have enuf time to figure something out by reading technical documentation. They'll start by looking for a pattern.
Lastly, this gives the group something very specific to focus on. For this group, at this time, that would be a really big help. We might even find volunteers from campuses that are working on different use cases. ;-)
On 1/15/19 11:28 AM, Nathan Dors wrote:
What do folks on the list think about contributing to a deployment guide for the GÉANT OIDC extension to the Shibboleth IdP, as a focus for early 2019?
On the last few WG calls we reflected on possible work directions for the first part of the year, and folks agreed that a practical near-term need exists for guidance for IdP operators testing, deploying, and using the GÉANT OIDC extension for use by various types of relying parties: everyday web-based apps, but also perhaps single page applications, native mobile and desktop apps, and apps with more limited interfaces like command-line apps. Possibly others too.
Sites testing the OIDC extension have an interest in such a guide, and therefore may be willing to contribute to it, either in the form of content or review and feedback. I know the team here at UWash is interested.
The mechanics of the guidemaking need to be sorted out, and coordinated with Janne, Henri, Shib Dev, et al., and the overall shift in focus needs support from sponsoring bodies like InCommon TAC, CACTI, and other stakeholders... but first, what do you think? Is this the right re-focus?
I know there are a lot of other topics related to OIDC and OAuth that we could cover - indeed, almost too many to cover in a reasonable timeframe - so how about we focus on successful integration of OIDC into IdPs, and then see what makes sense to do next.
-Nathan
- proposed focus for oidc-deploy; jan-mar 2019, Nathan Dors, 01/15/2019
- Re: proposed focus for oidc-deploy; jan-mar 2019, Alan Crosswell, 01/16/2019
- Re: proposed focus for oidc-deploy; jan-mar 2019, Steven Carmody, 01/16/2019
Archive powered by MHonArc 2.6.19.