Presentation given at OpenAthens workshops in Feburary/March 2009. It provides an introduction to the upcoming, second version of OpenAthens Local Authentication. OpenAthens LA provides an easy to manage multi-protocol identity provider for federated access to online services.
2. Product goals and rationale
Architecture
Demo of administration tools
2
3. What is OpenAthens LA?
Software to enable federated access to
internal and external Web resources
4. Federated identity
Identity Provider Service Providers
(resources)
Control
Policy
Subscriptions
Management
5. Federated identity
Identity Provider Service Providers
(resources)
Control
Policy
Subscriptions
Management
6. OpenAthens LA 1.0
• You know it as Athens DA
• 'Semi' federated
– depends on central service
• Not fully standards compliant
– only via central service
12. But...
• We've lost control and flexibility!
• We can't meet students expectations
• Athens also...
– hid much of the complexity
– provided web-based administration
→ distributed control
– provided statistics
13. Shibboleth administration
System
IT Services administrator
Shibboleth server
Librarian
Configuration
User-repository
19. OpenAthens LA 2.0: administration
System
administrator
Administration
Runtime server(s) server
Model
Runtime
Librarian
User-repository
Staff / students
30. Open APIs: write your own modules
• OpenAthens platform is multi-language
– C/C++, C#/.NET, Java, PHP, Ruby
• Can write in-line 'scriptlets'
– JavaScript, Ruby
OpenAthens LA runtime
31. OpenAthens LA 2.0: release schedule
June 2009:
April 2009: End of Beta
Beta release programme
2009
July 2009:
March 2009:
OpenAthens LA 2.0
Initial Alpha
General Availability