+ All Categories
Home > Software > FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

Date post: 30-Jun-2015
Category:

Software
Upload: cdanger
View: 856 times
Download: 1 times
Download Report this document
Share this document with a friend
Description:
FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces
12
The FI-WARE Project – Base Platform for Future Service Infrastructures Follow @FIWARE #FIWARE-AZ on Twitter ! FI-WARE Access Control GE Part 3 – IdM OAuth Setup & Interfaces Cyril DANGERVILLE, Thales FI-WARE / WP8 / T8.2 [email protected]
Transcript
Page 1: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

Follow @FIWARE #FIWARE-AZ on Twitter !

FI-WARE Access Control GEPart 3 – IdM OAuth Setup & Interfaces

Cyril DANGERVILLE, ThalesFI-WARE / WP8 / [email protected]

Page 2: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

IdM OAuth Setup Steps

1.IdM GE steps (contact: DT (W. Steigerwald), NSN (R. Seidl))

1.Request new instance (OAuth only in R2.3.3 for NSN One-IDM)

2.Connect to the IdM Admin UI and register the following:1.Target service (OAuth Resource Server)2.Client App (OAuth Client)3.End-users (OAuth Resource Owners)

3.Check the OAuth Token Service4.Set custom user attributes with the REST API

Page 3: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

Target Service - Registration

Page 4: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

Target Service - Credentials

Page 5: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

Target Service – Add attributes to OAuth Access Token (1/2)

Page 6: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

Target Service – Add attributes to token (2/2)

Page 7: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

Client App Registration

Page 8: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

Recommendations for Client App

For implementation, check the following:OAuth 2.0 spec (RFC), §4. Obtaining Authorization, §7.

Accessing Protected Resources §5.3 Client App Security of OAuth 2.0 Threat Model and

Security Considerations (IETF RFC 6819) for implementation

Page 9: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

End-User Self Registration

Page 10: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

OAuth Token Service

Page 11: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

IdM REST API for managing user attributes

No common API among IdM GEis. SCIM standard proposed.

GCP API samples

Page 12: FI-WARE Access Control GE (Part 3) – IdM OAuth Setup & Interfaces

The FI-WARE Project – Base Platform for Future Service Infrastructures

http://fi-ppp.eu

http://fi-ware.eu

Follow @FIWARE #FIWARE-AZ on Twitter !

Thanks !

12

http://fi-ppp.eu/
http://fi-ware.eu/

Recommended
The How of OAuth OAuth Hackathon – 4/26 @ Six Apart .

The How of OAuth OAuth Hackathon – 4/26 @ Six Apart .

Documents

Oracle Access Management OAuth Service€¦ · OAuth 2.0 authorization server and also offers several compelling differentiations to enable the OAuth 2.0 Client and the OAuth 2.0

Oracle Access Management OAuth Service€¦ · OAuth 2.0 authorization server and also offers several compelling differentiations to enable the OAuth 2.0 Client and the OAuth 2.0

Documents

IDM Qualifications Rules and Regulations...IDM Professional Certificate in Email Marketing IDM Professional Certificate in Social Media IDM Professional Certificate in Search Marketing

IDM Qualifications Rules and Regulations...IDM Professional Certificate in Email Marketing IDM Professional Certificate in Social Media IDM Professional Certificate in Search Marketing

Documents

Mastering OAuth 2 - Adobe Inc.€¦ · leveraging the OAuth 2.0 Authorization Framework Mastering OAuth 2.0 Charles Bihis Mastering OAuth 2.0 OAuth 2.0 is a powerful authorization

Mastering OAuth 2 - Adobe Inc.€¦ · leveraging the OAuth 2.0 Authorization Framework Mastering OAuth 2.0 Charles Bihis Mastering OAuth 2.0 OAuth 2.0 is a powerful authorization

Documents

The Essential OAuth Primer: Understanding OAuth for Securing Cloud

The Essential OAuth Primer: Understanding OAuth for Securing Cloud

Documents

Entendiendo oAuth

Entendiendo oAuth

Documents

WordPress + OAuth

WordPress + OAuth

Technology

Twitter4R OAuth

Twitter4R OAuth

Technology

foX Trekker PC Based Portable X-ray Inspection System ... · WF-IDM- 013 WBA-pp_ 01 SC-IDM- A30 SC-IDM- A31 SC-IDM- 068 SC-IDM- 056 SC-IDM- 057 SC-IDM- 115 SC-IDM- 062 SC-IDM- 069

foX Trekker PC Based Portable X-ray Inspection System ... · WF-IDM- 013 WBA-pp_ 01 SC-IDM- A30 SC-IDM- A31 SC-IDM- 068 SC-IDM- 056 SC-IDM- 057 SC-IDM- 115 SC-IDM- 062 SC-IDM- 069

Documents

OAuth you said

OAuth you said

Technology

The Essential OAuth Primer: Understanding OAuth for Securing Cloud APIs

The Essential OAuth Primer: Understanding OAuth for Securing Cloud APIs

Technology

TECHNOLOGY, MEDIA & TELECOM · PAGE | CONTENTS IDM OVERVIEW SELECT M&A TRANSACTIONS –4Q 2016 IDM M&A ACTIVITY IDM SECTOR OVERVIEWS IDM PRIVATE PLACEMENTS OVERVIEW IDM PUBLIC COMPARABLES

TECHNOLOGY, MEDIA & TELECOM · PAGE | CONTENTS IDM OVERVIEW SELECT M&A TRANSACTIONS –4Q 2016 IDM M&A ACTIVITY IDM SECTOR OVERVIEWS IDM PRIVATE PLACEMENTS OVERVIEW IDM PUBLIC COMPARABLES

Documents

[MS-OAUTH2EX]: OAuth 2.0 Authentication Protocol …...OAuth 2.0 Authentication Protocol Extensions describes extensions to the OAuth 2.0 Authentication Protocol. These extensions

[MS-OAUTH2EX]: OAuth 2.0 Authentication Protocol …...OAuth 2.0 Authentication Protocol Extensions describes extensions to the OAuth 2.0 Authentication Protocol. These extensions

Documents

White Paper IDM in EDU · IDM SOLUTIONS 5 An IDM Solution is the Answer 6 Without an IDM Solution: Resorting to Not-So-Wise Workarounds Amidst that Budget Beatdown 8 IDM Solutions

White Paper IDM in EDU · IDM SOLUTIONS 5 An IDM Solution is the Answer 6 Without an IDM Solution: Resorting to Not-So-Wise Workarounds Amidst that Budget Beatdown 8 IDM Solutions

Documents

H. Tschofenig OAuth 2.0 Security: OAuth Open Redirector · OAuth 2.0 Security: OAuth Open Redirector draft-bradley-oauth-open-redirector-02.txt Abstract This document gives additional

H. Tschofenig OAuth 2.0 Security: OAuth Open Redirector · OAuth 2.0 Security: OAuth Open Redirector draft-bradley-oauth-open-redirector-02.txt Abstract This document gives additional

Documents

Oracle OAuth ServiceOAuth 2.0 authorization server and also offers several compelling differentiations to enable the OAuth 2.0 Client and the OAuth 2.0 Resource Server roles. OAM OAuth

Oracle OAuth ServiceOAuth 2.0 authorization server and also offers several compelling differentiations to enable the OAuth 2.0 Client and the OAuth 2.0 Resource Server roles. OAM OAuth

Documents

Oauth Tutorial

Oauth Tutorial

Documents

Painless OAuth

Painless OAuth

Technology