Alert.png The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.

Difference between revisions of "EGI-Engage:TASK JRA1.1 Authentication and Authorisation Infrastructure"

From EGIWiki
Jump to navigation Jump to search
 
(10 intermediate revisions by 3 users not shown)
Line 57: Line 57:
| 08/15  
| 08/15  
| Done  
| Done  
| <br>
| <br>  
|  
|  
|-
|-
| 1.3  
| 1.3  
|  
|  
*Decision on which AA services are needed<br>
*Decision on which services are needed for the EGI AAI


| 09/15  
| 09/15  
| 12/15  
| 12/15  
| Done  
| Done  
| <br>
| <br>  
|  
|  
|-
|-
| 1.4  
| 1.4  
|  
|  
*Initial implementation of the EGI IdP/SP Proxy
*Initial implementation of the EGI IdP/SP Proxy (SAML2 flows)


| 10/15  
| 10/15  
| 12/15  
| 12/15  
| Done  
| Done  
| <br>
| <br>  
|  
|  
|-
|-
Line 122: Line 122:
| 1.9  
| 1.9  
|  
|  
*Support for Facebook authentication
*Support for authentication providers via OAUTH2


| <span style="font-size: 13.28px;">01/16</span>  
| <span style="font-size: 13.28px;">01/16</span>  
Line 132: Line 132:
| 1.10  
| 1.10  
|  
|  
*Support for Google authentication
*Support for authentication providers vis OIDC


| <span style="font-size: 13.28px;">01/16</span>  
| <span style="font-size: 13.28px;">01/16</span>  
Line 140: Line 140:
|  
|  
|-
|-
| 1.11  
| 1.11
|
*Support for LinkedIn authentication
 
| <span style="font-size: 13.28px;">01/16</span>
| <span style="font-size: 13.28px;">03/16</span>
| Done
|
|
|-
| 1.12
|  
|  
*Support for ORCID
*Support for ORCID


| 04/16  
| 04/16  
| 06/16  
| 05/16  
| Done  
| Done  
| <br>
| <br>  
|  
|  
|-
|-
| 1.13
| 1.12
|  
|  
*<span style="line-height: 1.5em; font-size: 13.28px;">User Enrollment Interface</span>
*<span style="line-height: 1.5em; font-size: 13.28px;">User Enrollment Interface</span>


| 05/16  
| 05/16  
| 07/16  
| 06/16  
| In progress
| Done
|  
|  
|  
|  
|-
|-
| 1.14
| 1.13
|  
|  
*Support for account linking
*Support for account linking
Line 180: Line 170:
|  
|  
|-
|-
| 1.15
| 1.14
|  
|  
*Support for OIDC Services
*Support for OIDC Services
Line 187: Line 177:
| 07/16  
| 07/16  
| In progress  
| In progress  
| <br>
| <br>  
|  
|  
|-
|-
| 1.16
| 1.15
|  
|  
*Technology reassessment
*Technology reassessment
Line 197: Line 187:
| 11/16  
| 11/16  
| Planned  
| Planned  
| <br>
| <br>  
|  
|  
|}
|}
Line 206: Line 196:
|-
|-
! Task number  
! Task number  
(1.X)  
(2.X)  


! Task name  
! Task name  
Line 221: Line 211:
! Issues
! Issues
|-
|-
| 1.1
| 2.1  
| Identification of and liaison with stakeholders:
*WP3 F2F and EGI Conference
*Liaise with AARC
*Connections with GN4, EUDAT2020 and PRACE
 
| 05/15
| 06/15
| Done
|
|
|-
| 1.2
| Requirements capturing:
*Use FIM4R as the starting point
*Align with AARC DJRA1.1
*Identify the most important use cases (CC)
*Requirements from Tools
 
| 05/15
| 08/15
| Done
| 1.1
|
|-
| 1.3
|
*Decision on which AA services are needed<br>
 
| 09/15
| 12/15
| Done
| 1.2  
|
|-
| 1.4
|
*Initial implementation of the EGI IdP/SP Proxy
 
| 10/15
| 12/15
| Done
| 1.2
|
|-
| 1.5
|
*Proof of concept with sample IdPs and SPs
 
| 11/15
| 12/15
| Done
|
|
|-
| 1.6
|
*<span style="line-height: 1.5em; font-size: 13.28px;">Support for AA queries via LDAP</span><br>
 
| 11/15
| 12/15
| Done
|
|
|-
| 1.7
|
*Support for AA queries via SAML2 AttributeQuery
 
| <span style="font-size: 13.28px;">01/16</span>
| <span style="font-size: 13.28px;">03/16</span>
| Done
|
|
|-
| 1.8
|
*Support for AA queries via REST APIs
 
| <span style="font-size: 13.28px;">01/16</span>
| <span style="font-size: 13.28px;">03/16</span>
| Done
|
|
|-
| 1.9
|  
|  
*Interconnect the EGI IdP/SP Proxy with GOCDB as an AA
*Interconnect the EGI IdP/SP Proxy with GOCDB as an AA
Line 313: Line 218:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.8
|  
|  
|-
|-
| 1.10
| 2.2
|  
|  
*<span style="font-size: 13.28px; line-height: 19.92px;">Interconnect the EGI IdP/SP Proxy with CILogon based TTS (X509v3)</span>
*<span style="font-size: 13.28px; line-height: 19.92px;">Interconnect the EGI IdP/SP Proxy with CILogon based TTS (X509v3)</span>
Line 323: Line 228:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.4
|  
|  
|-
|-
| 1.11
| 2.3
|  
|  
*Interconnect the EGI IdP/SP Proxy with CILogon based TTS (PUSP)
*Interconnect the EGI IdP/SP Proxy with CILogon based TTS (PUSP)
Line 333: Line 238:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.4
|  
|  
|-
|-
| 1.12
| 2.4
|  
|  
*Support for Facebook authentication
*Support for Facebook authentication
Line 343: Line 248:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.10
|  
|  
|-
|-
| 1.13
| 2.5
|  
|  
*Support for Google authentication
*Support for Google authentication
Line 353: Line 258:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.10
|  
|  
|-
|-
| 1.14
| 2.6
|  
|  
*Support for LinkedIn authentication
*Support for LinkedIn authentication
Line 363: Line 268:
| <span style="font-size: 13.28px;">03/16</span>  
| <span style="font-size: 13.28px;">03/16</span>  
| Done  
| Done  
|  
| 1.9
|  
|  
|-
|-
| 1.15
| 2.7
|  
|  
*Support for ORCID
*Support for ORCID
Line 373: Line 278:
| 06/16  
| 06/16  
| Done  
| Done  
| 1.3
| 1.9
|
|-
| 1.16
|
*<span style="line-height: 1.5em; font-size: 13.28px;">User Enrollment Interface</span>
 
| 05/16
| 07/16
| In progress
|
|  
|  
|-
|-
| 1.17
| 2.8
|
*Support for account linking
 
| 05/16
| 07/16
| In progress
|
|
|-
| 1.18
|  
|  
*Interconnection with the ELIXIR IdP
*Interconnection with the ELIXIR IdP
Line 403: Line 288:
| 06/16  
| 06/16  
| Done  
| Done  
|  
| 1.4
|  
|  
|-
|-
| 1.19
| 2.9
|  
|  
*Integration with AppDB SP
*Integration with AppDB SP
Line 413: Line 298:
| 06/16  
| 06/16  
| Done  
| Done  
|  
| 1.4
|  
|  
|-
|-
| 1.20
| 2.10
|  
|  
*Integration with GGUS SP
*Integration with GGUS SP
Line 423: Line 308:
| 07/15  
| 07/15  
| In progress  
| In progress  
|
| 1.4
|
|-
| 1.21
|
*Support for OIDC Services
 
| 04/16
| 07/16
| In progress
| 1.3
|  
|  
|-
|-
| 1.22
| 2.11
|  
|  
*<span style="line-height: 1.5em; font-size: 13.28px;">Design EUDAT Pilot</span><br>
*<span style="line-height: 1.5em; font-size: 13.28px;">Design EUDAT Pilot</span><br>
Line 443: Line 318:
| 06/16  
| 06/16  
| In progress  
| In progress  
| 1.3
| <br>
|  
|  
|-
|-
| 1.23
| 2.12
|  
|  
*Design for the interconnection with the Fedcloud SP
*Design for the interconnection with the Fedcloud SP
Line 453: Line 328:
| 07/16  
| 07/16  
| In progress  
| In progress  
|  
| <br>
|  
|  
|-
|-
| 1.24
| 2.13
|  
|  
*Intergration with the Fedcloud SP
*Integration with the Fedcloud SP


| 07/16  
| 07/16  
| &nbsp;??  
| &nbsp;??  
|  
| In progress
|  
| 1.14, 2.12
|  
|  
|-
|-
| 1.25
| 2.14
|  
|  
*Intergration with the OneCloud SP
*Integration with the OneCloud SP


| 07/16  
| 07/16  
| &nbsp;??  
| &nbsp;??  
|  
| In progress
|  
| 1.14
|  
|  
|-
|-
| 1.26
| 2.15
|  
|  
*Interconnection with the EUDAT IdP
*Interconnection with the EUDAT IdP
Line 483: Line 358:
| &nbsp;??  
| &nbsp;??  
|  
|  
|  
| 2.11
|  
|  
|-
|-
| 1.27
| 2.16
|  
|  
*Interconnection with EUDAT services
*Interconnection with EUDAT services
Line 493: Line 368:
| &nbsp;??  
| &nbsp;??  
|  
|  
| 1.14, 2.11
|  
|  
|  
|}
|-
| 1.28
|
*Technology reassessment


| 09/16
= Working documents=
| 11/16
[[EGI-Engage:TASK_JRA1.1 Proposal for Levels of Assurance]]
| Planned
| 1.3, 1.4
|
|}


[[EGI-Engage:TASK_JRA1.1 RC Auth integration steps and actions]]
[[Category:EGI-Engage]]
[[Category:EGI-Engage]]

Latest revision as of 14:59, 19 February 2017

EGI-Engage project: Main page WP1(NA1) WP3(JRA1) WP5(SA1) PMB Deliverables and Milestones Quality Plan Risk Plan Data Plan
Roles and
responsibilities 		WP2(NA2) WP4(JRA2) WP6(SA2) AMB Software and services Metrics Project Office Procedures



Task leader: Christos Kanelloupolos/GRNET
Task leader deputy: TBD

Mailing list:TBD


Involved Partner

  • GRNET
  • EGI.eu
  • CESNET
  • STFC
  • NIKHEF

Development Roadmap

Task number

(1.X)

Task name Start date

(MM/YY)

Release Date

(MM/YY)

Status

(Planned/Done)

Dependencies from other tasks Issues
1.1 Identification of and liaison with stakeholders:
  • WP3 F2F and EGI Conference
  • Liaise with AARC
  • Connections with GN4, EUDAT2020 and PRACE
 05/15 06/15 Done
1.2 Requirements capturing:
  • Use FIM4R as the starting point
  • Align with AARC DJRA1.1
  • Identify the most important use cases (CC)
  • Requirements from Tools
 05/15 08/15 Done
1.3
  • Decision on which services are needed for the EGI AAI
 09/15 12/15 Done
1.4
  • Initial implementation of the EGI IdP/SP Proxy (SAML2 flows)
 10/15 12/15 Done
1.5
  • Proof of concept with sample IdPs and SPs
 11/15 12/15 Done
1.6
  • Support for AA queries via LDAP
 11/15 12/15 Done
1.7
  • Support for AA queries via SAML2 AttributeQuery
 01/16 03/16 Done
1.8
  • Support for AA queries via REST APIs
 01/16 03/16 Done
1.9
  • Support for authentication providers via OAUTH2
 01/16 03/16 Done
1.10
  • Support for authentication providers vis OIDC
 01/16 03/16 Done
1.11
  • Support for ORCID
 04/16 05/16 Done
1.12
  • User Enrollment Interface
 05/16 06/16 Done
1.13
  • Support for account linking
 05/16 07/16 In progress
1.14
  • Support for OIDC Services
 04/16 07/16 In progress
1.15
  • Technology reassessment
 09/16 11/16 Planned

Integration Roadmap

Task number

(2.X)

Task name Start date

(MM/YY)

Release Date

(MM/YY)

Status

(Planned/Done)

Dependencies from other tasks Issues
2.1
  • Interconnect the EGI IdP/SP Proxy with GOCDB as an AA
 01/16 03/16 Done 1.8
2.2
  • Interconnect the EGI IdP/SP Proxy with CILogon based TTS (X509v3)
 01/16 03/16 Done 1.4
2.3
  • Interconnect the EGI IdP/SP Proxy with CILogon based TTS (PUSP)
 01/16 03/16 Done 1.4
2.4
  • Support for Facebook authentication
 01/16 03/16 Done 1.10
2.5
  • Support for Google authentication
 01/16 03/16 Done 1.10
2.6
  • Support for LinkedIn authentication
 01/16 03/16 Done 1.9
2.7
  • Support for ORCID
 04/16 06/16 Done 1.9
2.8
  • Interconnection with the ELIXIR IdP
 04/16 06/16 Done 1.4
2.9
  • Integration with AppDB SP
 04/16 06/16 Done 1.4
2.10
  • Integration with GGUS SP
 06/16 07/15 In progress 1.4
2.11
  • Design EUDAT Pilot
 05/16 06/16 In progress
2.12
  • Design for the interconnection with the Fedcloud SP
 06/16 07/16 In progress
2.13
  • Integration with the Fedcloud SP
 07/16  ?? In progress 1.14, 2.12
2.14
  • Integration with the OneCloud SP
 07/16  ?? In progress 1.14
2.15
  • Interconnection with the EUDAT IdP
 07/16  ?? 2.11
2.16
  • Interconnection with EUDAT services
 07/16  ?? 1.14, 2.11

Working documents

EGI-Engage:TASK_JRA1.1 Proposal for Levels of Assurance

EGI-Engage:TASK_JRA1.1 RC Auth integration steps and actions

Retrieved from "https://wiki.egi.eu/w/index.php?title=EGI-Engage:TASK_JRA1.1_Authentication_and_Authorisation_Infrastructure&oldid=93254"