Alert.png The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.

Difference between revisions of "EGI-Engage:TASK JRA1.1 Authentication and Authorisation Infrastructure"

From EGIWiki
Jump to navigation Jump to search
 
(11 intermediate revisions by 3 users not shown)
Line 57: Line 57:
| 08/15  
| 08/15  
| Done  
| Done  
| 1.1
| <br>
|  
|  
|-
|-
| 1.3  
| 1.3  
|  
|  
*Decision on which AA services are needed<br>
*Decision on which services are needed for the EGI AAI


| 09/15  
| 09/15  
| 12/15  
| 12/15  
| Done  
| Done  
| 1.2
| <br>
|  
|  
|-
|-
| 1.4  
| 1.4  
|  
|  
*Initial implementation of the EGI IdP/SP Proxy
*Initial implementation of the EGI IdP/SP Proxy (SAML2 flows)


| 10/15  
| 10/15  
| 12/15  
| 12/15  
| Done  
| Done  
| 1.2
| <br>
|  
|  
|-
|-
Line 122: Line 122:
| 1.9  
| 1.9  
|  
|  
*Interconnect the EGI IdP/SP Proxy with GOCDB as an AA
*Support for authentication providers via OAUTH2


| <span style="font-size: 13.28px;">01/16</span>  
| <span style="font-size: 13.28px;">01/16</span>  
Line 132: Line 132:
| 1.10  
| 1.10  
|  
|  
*<span style="font-size: 13.28px; line-height: 19.92px;">Interconnect the EGI IdP/SP Proxy with CILogon based TTS (X509v3)</span>
*Support for authentication providers vis OIDC
 
| <span style="font-size: 13.28px;">01/16</span>
| <span style="font-size: 13.28px;">03/16</span>
| Done
|
|
|-
| 1.11
|
*Interconnect the EGI IdP/SP Proxy with CILogon based TTS (PUSP)
 
| <span style="font-size: 13.28px;">01/16</span>
| <span style="font-size: 13.28px;">03/16</span>
| Done
|
|
|-
| 1.12
|
*Support for Facebook authentication
 
| <span style="font-size: 13.28px;">01/16</span>
| <span style="font-size: 13.28px;">03/16</span>
| Done
|
|
|-
| 1.13
|
*Support for Google authentication
 
| <span style="font-size: 13.28px;">01/16</span>
| <span style="font-size: 13.28px;">03/16</span>
| Done
|
|
|-
| 1.14
|
*Support for LinkedIn authentication


| <span style="font-size: 13.28px;">01/16</span>  
| <span style="font-size: 13.28px;">01/16</span>  
Line 180: Line 140:
|  
|  
|-
|-
| 1.15
| 1.11
|  
|  
*Support for ORCID
*Support for ORCID


| 04/16  
| 04/16  
| 06/16  
| 05/16  
| Done  
| Done  
| 1.3
| <br>
|  
|  
|-
|-
| 1.16
| 1.12
|  
|  
*<span style="line-height: 1.5em; font-size: 13.28px;">User Enrollment Interface</span>
*<span style="line-height: 1.5em; font-size: 13.28px;">User Enrollment Interface</span>


| 05/16  
| 05/16  
| 07/16  
| 06/16  
| In progress
| Done
|  
|  
|  
|  
|-
|-
| 1.17
| 1.13
|  
|  
*Support for account linking
*Support for account linking
Line 210: Line 170:
|  
|  
|-
|-
| 1.18
| 1.14
|
*Interconnection with the ELIXIR IdP
 
| 04/16
| 06/16
| Done
|
|
|-
| 1.19
|
*Integration with AppDB SP
 
| 04/16
| 06/16
| Done
|
|
|-
| 1.20
|
*Integration with GGUS SP
 
| 06/16
| 07/15
| In progress
|
|
|-
| 1.21
|  
|  
*Support for OIDC Services
*Support for OIDC Services
Line 247: Line 177:
| 07/16  
| 07/16  
| In progress  
| In progress  
| 1.3
| <br>  
|
|-
| 1.22
|
*<span style="line-height: 1.5em; font-size: 13.28px;">Design EUDAT Pilot</span><br>
 
| 05/16
| 06/16
| In progress
| 1.3
|
|-
| 1.23
|
*Design for the interconnection with the Fedcloud SP
 
| 06/16
| 07/16
| In progress
|
|
|-
| 1.24
|
*Intergration with the Fedcloud SP
 
| 07/16
| &nbsp;??
|
|
|
|-
| 1.25
|
*Intergration with the OneCloud SP
 
| 07/16
| &nbsp;??
|
|
|
|-
| 1.26
|
*Interconnection with the EUDAT IdP
 
| 07/16
| &nbsp;??
|
|
|
|-
| 1.27
|
*Interconnection with EUDAT services
 
| 07/16
| &nbsp;??
|
|
|  
|  
|-
|-
| 1.28
| 1.15
|  
|  
*Technology reassessment
*Technology reassessment
Line 317: Line 187:
| 11/16  
| 11/16  
| Planned  
| Planned  
| 1.3, 1.4
| <br>
|  
|  
|}
|}
Line 326: Line 196:
|-
|-
! Task number  
! Task number  
(1.X)  
(2.X)  


! Task name  
! Task name  
Line 341: Line 211:
! Issues
! Issues
|-
|-
| 1.1
| 2.1  
| Identification of and liaison with stakeholders:
*WP3 F2F and EGI Conference
*Liaise with AARC
*Connections with GN4, EUDAT2020 and PRACE
 
| 05/15
| 06/15
| Done
|
|
|-
| 1.2
| Requirements capturing:
*Use FIM4R as the starting point
*Align with AARC DJRA1.1
*Identify the most important use cases (CC)
*Requirements from Tools
 
| 05/15
| 08/15
| Done
| 1.1
|
|-
| 1.3
|
*Decision on which AA services are needed<br>
 
| 09/15
| 12/15
| Done
| 1.2  
|
|-
| 1.4
|
*Initial implementation of the EGI IdP/SP Proxy
 
| 10/15
| 12/15
| Done
| 1.2
|
|-
| 1.5
|
*Proof of concept with sample IdPs and SPs
 
| 11/15
| 12/15
| Done
|
|
|-
| 1.6
|
*<span style="line-height: 1.5em; font-size: 13.28px;">Support for AA queries via LDAP</span><br>
 
| 11/15
| 12/15
| Done
|
|
|-
| 1.7
|
*Support for AA queries via SAML2 AttributeQuery
 
| <span style="font-size: 13.28px;">01/16</span>
| <span style="font-size: 13.28px;">03/16</span>
| Done
|
|
|-
| 1.8
|
*Support for AA queries via REST APIs
 
| <span style="font-size: 13.28px;">01/16</span>
| <span style="font-size: 13.28px;">03/16</span>
| Done
|
|
|-
| 1.9
|  
|  
*Interconnect the EGI IdP/SP Proxy with GOCDB as an AA
*Interconnect the EGI IdP/SP Proxy with GOCDB as an AA
Line 433: Line 218:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.8
|  
|  
|-
|-
| 1.10
| 2.2
|  
|  
*<span style="font-size: 13.28px; line-height: 19.92px;">Interconnect the EGI IdP/SP Proxy with CILogon based TTS (X509v3)</span>
*<span style="font-size: 13.28px; line-height: 19.92px;">Interconnect the EGI IdP/SP Proxy with CILogon based TTS (X509v3)</span>
Line 443: Line 228:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.4
|  
|  
|-
|-
| 1.11
| 2.3
|  
|  
*Interconnect the EGI IdP/SP Proxy with CILogon based TTS (PUSP)
*Interconnect the EGI IdP/SP Proxy with CILogon based TTS (PUSP)
Line 453: Line 238:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.4
|  
|  
|-
|-
| 1.12
| 2.4
|  
|  
*Support for Facebook authentication
*Support for Facebook authentication
Line 463: Line 248:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.10
|  
|  
|-
|-
| 1.13
| 2.5
|  
|  
*Support for Google authentication
*Support for Google authentication
Line 473: Line 258:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.10
|  
|  
|-
|-
| 1.14
| 2.6
|  
|  
*Support for LinkedIn authentication
*Support for LinkedIn authentication
Line 483: Line 268:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.9
|  
|  
|-
|-
| 1.15
| 2.7
|  
|  
*Support for ORCID
*Support for ORCID
Line 493: Line 278:
| 06/16  
| 06/16  
| Done  
| Done  
| 1.3
| 1.9
|  
|  
|-
|-
| 1.16
| 2.8
|
*<span style="line-height: 1.5em; font-size: 13.28px;">User Enrollment Interface</span>
 
| 05/16
| 07/16
| In progress
|
|
|-
| 1.17
|
*Support for account linking
 
| 05/16
| 07/16
| In progress
|
|
|-
| 1.18
|  
|  
*Interconnection with the ELIXIR IdP
*Interconnection with the ELIXIR IdP
Line 523: Line 288:
| 06/16  
| 06/16  
| Done  
| Done  
|  
| 1.4
|  
|  
|-
|-
| 1.19
| 2.9
|  
|  
*Integration with AppDB SP
*Integration with AppDB SP
Line 533: Line 298:
| 06/16  
| 06/16  
| Done  
| Done  
|  
| 1.4
|  
|  
|-
|-
| 1.20
| 2.10
|  
|  
*Integration with GGUS SP
*Integration with GGUS SP
Line 543: Line 308:
| 07/15  
| 07/15  
| In progress  
| In progress  
|  
| 1.4
|  
|  
|-
|-
| 1.21
| 2.11
|
*Support for OIDC Services
 
| 04/16
| 07/16
| In progress
| 1.3
|
|-
| 1.22
|  
|  
*<span style="line-height: 1.5em; font-size: 13.28px;">Design EUDAT Pilot</span><br>
*<span style="line-height: 1.5em; font-size: 13.28px;">Design EUDAT Pilot</span><br>
Line 563: Line 318:
| 06/16  
| 06/16  
| In progress  
| In progress  
| 1.3
| <br>
|  
|  
|-
|-
| 1.23
| 2.12
|  
|  
*Design for the interconnection with the Fedcloud SP
*Design for the interconnection with the Fedcloud SP
Line 573: Line 328:
| 07/16  
| 07/16  
| In progress  
| In progress  
|  
| <br>
|  
|  
|-
|-
| 1.24
| 2.13
|  
|  
*Intergration with the Fedcloud SP
*Integration with the Fedcloud SP


| 07/16  
| 07/16  
| &nbsp;??  
| &nbsp;??  
|  
| In progress
|  
| 1.14, 2.12
|  
|  
|-
|-
| 1.25
| 2.14
|  
|  
*Intergration with the OneCloud SP
*Integration with the OneCloud SP


| 07/16  
| 07/16  
| &nbsp;??  
| &nbsp;??  
|  
| In progress
|  
| 1.14
|  
|  
|-
|-
| 1.26
| 2.15
|  
|  
*Interconnection with the EUDAT IdP
*Interconnection with the EUDAT IdP
Line 603: Line 358:
| &nbsp;??  
| &nbsp;??  
|  
|  
|  
| 2.11
|  
|  
|-
|-
| 1.27
| 2.16
|  
|  
*Interconnection with EUDAT services
*Interconnection with EUDAT services
Line 613: Line 368:
| &nbsp;??  
| &nbsp;??  
|  
|  
| 1.14, 2.11
|  
|  
|  
|}
|-
| 1.28
|
*Technology reassessment


| 09/16
= Working documents=
| 11/16
[[EGI-Engage:TASK_JRA1.1 Proposal for Levels of Assurance]]
| Planned
| 1.3, 1.4
|
|}


[[EGI-Engage:TASK_JRA1.1 RC Auth integration steps and actions]]
[[Category:EGI-Engage]]
[[Category:EGI-Engage]]

Latest revision as of 14:59, 19 February 2017

EGI-Engage project: Main page WP1(NA1) WP3(JRA1) WP5(SA1) PMB Deliverables and Milestones Quality Plan Risk Plan Data Plan
Roles and
responsibilities 		WP2(NA2) WP4(JRA2) WP6(SA2) AMB Software and services Metrics Project Office Procedures



Task leader: Christos Kanelloupolos/GRNET
Task leader deputy: TBD

Mailing list:TBD


Involved Partner

  • GRNET
  • EGI.eu
  • CESNET
  • STFC
  • NIKHEF

Development Roadmap

Task number

(1.X)

Task name Start date

(MM/YY)

Release Date

(MM/YY)

Status

(Planned/Done)

Dependencies from other tasks Issues
1.1 Identification of and liaison with stakeholders:
  • WP3 F2F and EGI Conference
  • Liaise with AARC
  • Connections with GN4, EUDAT2020 and PRACE
 05/15 06/15 Done
1.2 Requirements capturing:
  • Use FIM4R as the starting point
  • Align with AARC DJRA1.1
  • Identify the most important use cases (CC)
  • Requirements from Tools
 05/15 08/15 Done
1.3
  • Decision on which services are needed for the EGI AAI
 09/15 12/15 Done
1.4
  • Initial implementation of the EGI IdP/SP Proxy (SAML2 flows)
 10/15 12/15 Done
1.5
  • Proof of concept with sample IdPs and SPs
 11/15 12/15 Done
1.6
  • Support for AA queries via LDAP
 11/15 12/15 Done
1.7
  • Support for AA queries via SAML2 AttributeQuery
 01/16 03/16 Done
1.8
  • Support for AA queries via REST APIs
 01/16 03/16 Done
1.9
  • Support for authentication providers via OAUTH2
 01/16 03/16 Done
1.10
  • Support for authentication providers vis OIDC
 01/16 03/16 Done
1.11
  • Support for ORCID
 04/16 05/16 Done
1.12
  • User Enrollment Interface
 05/16 06/16 Done
1.13
  • Support for account linking
 05/16 07/16 In progress
1.14
  • Support for OIDC Services
 04/16 07/16 In progress
1.15
  • Technology reassessment
 09/16 11/16 Planned

Integration Roadmap

Task number

(2.X)

Task name Start date

(MM/YY)

Release Date

(MM/YY)

Status

(Planned/Done)

Dependencies from other tasks Issues
2.1
  • Interconnect the EGI IdP/SP Proxy with GOCDB as an AA
 01/16 03/16 Done 1.8
2.2
  • Interconnect the EGI IdP/SP Proxy with CILogon based TTS (X509v3)
 01/16 03/16 Done 1.4
2.3
  • Interconnect the EGI IdP/SP Proxy with CILogon based TTS (PUSP)
 01/16 03/16 Done 1.4
2.4
  • Support for Facebook authentication
 01/16 03/16 Done 1.10
2.5
  • Support for Google authentication
 01/16 03/16 Done 1.10
2.6
  • Support for LinkedIn authentication
 01/16 03/16 Done 1.9
2.7
  • Support for ORCID
 04/16 06/16 Done 1.9
2.8
  • Interconnection with the ELIXIR IdP
 04/16 06/16 Done 1.4
2.9
  • Integration with AppDB SP
 04/16 06/16 Done 1.4
2.10
  • Integration with GGUS SP
 06/16 07/15 In progress 1.4
2.11
  • Design EUDAT Pilot
 05/16 06/16 In progress
2.12
  • Design for the interconnection with the Fedcloud SP
 06/16 07/16 In progress
2.13
  • Integration with the Fedcloud SP
 07/16  ?? In progress 1.14, 2.12
2.14
  • Integration with the OneCloud SP
 07/16  ?? In progress 1.14
2.15
  • Interconnection with the EUDAT IdP
 07/16  ?? 2.11
2.16
  • Interconnection with EUDAT services
 07/16  ?? 1.14, 2.11

Working documents

EGI-Engage:TASK_JRA1.1 Proposal for Levels of Assurance

EGI-Engage:TASK_JRA1.1 RC Auth integration steps and actions

Retrieved from "https://wiki.egi.eu/w/index.php?title=EGI-Engage:TASK_JRA1.1_Authentication_and_Authorisation_Infrastructure&oldid=93254"