invitation to join the dvn-auth mailing list (focus on Shibboleth)

21 views
Skip to first unread message

Philip Durbin

unread,
Sep 20, 2013, 10:02:24 AM9/20/13
to dataverse...@googlegroups.com
Authentication and authorization (especially Shibboleth support) will
be a focus of an upcoming release of DVN (3.7 is the current target)
and I created a separate mailing list to coordinate this effort,
especially among the various DVN installations that will want to have
their users authenticate against existing or future Shibbloeth
Identity Providers (IdPs). We'd like the DVN Service Provider (SP)
implementation to be compatible with all of them.

If you're interested in such topics, you are welcome to read the first
post below* and subscribe at
https://lists.iq.harvard.edu/mailman/listinfo/dvn-auth

Thanks,

Phil

* archived at https://lists.iq.harvard.edu/pipermail/dvn-auth/2013-September/000000.html

---------- Forwarded message ----------
From: Philip Durbin <philip...@harvard.edu>
Date: Thu, Sep 19, 2013 at 4:43 PM
Subject: Welcome the dvn-auth mailing list!
To: dvn-...@lists.iq.harvard.edu

The dvn-auth mailing list has been established to have a public place
to discuss the evolution of authentication and authorization for
installations of Dataverse Network (DVN): http://thedata.org

In the short term, the focus will be on making DVN a Shibboleth/SAML
Service Provider (SP) that authenticates users via one or more
Identity Providers (IdPs). Development of this feature is being
tracked at https://redmine.hmdc.harvard.edu/issues/2657 and related
documents (notes, design documents, meeting minutes, etc.) are being
stored at https://drive.google.com/folderview?id=0B_qMYwdHFZghT21ZTkN5STBrSEU&usp=sharing

The latest thinking for the design of the DVN SP implementation (still
in the early stages) is here:
https://docs.google.com/document/d/1y2axfd_ScmXVICFlV8AuPDdp5xHwTag54pUpVefzs5g/edit?usp=sharing

Especially interesting to discuss on this list will be how various
institutions run their Identity Provider (IdP) to ensure that the DVN
SP implementation will be compatible with all of them.

Beyond Shibboleth and SAML, discussion of anything related to auth
such as OAuth, API keys, Single Sign On (SSO) in general, etc. is
certainly welcome. Representative development tickets include:

- Password restrictions: https://redmine.hmdc.harvard.edu/issues/2814
- API keys (OAuth?): https://redmine.hmdc.harvard.edu/issues/3208

Despite the targeted nature of this mailing list, auth is also on
topic for the general Dataverse community mailing list:
https://groups.google.com/group/dataverse-community

In addition, #dvn on the freenode IRC network is a good place to
discuss all things DVN. The latest log is at
http://irclog.iq.harvard.edu/dvn/today and the easiest way to join is
via http://webchat.freenode.net/?channels=dvn

Phil

--
Philip Durbin
Software Developer for http://thedata.org
http://www.iq.harvard.edu/people/philip-durbin
Reply all
Reply to author
Forward
0 new messages