IRM Summit 2014
IDP PROXY CONCEPTAccessing Identity Data Sources Everywhere!
Peter Major
‹#›IRM Summit 2014
About me■ Working with OpenSSO/OpenAM since 2009
■ Support/Sustaining Engineer at ForgeRock since 2011
■ Contact– @majorpetya– [email protected]– http://blogs.forgerock.org/petermajor– https://github.com/aldaris/
‹#›IRM Summit 2014
SAML Federations■ Provides a standardized solution for web browser
single sign on
■ Introduces the concept of federated identities
■ Widely used
‹#›IRM Summit 2014
Terminology■ Identity Provider (IdP): the authoritative source of
identity data
■ Service Provider (SP): content provider
■ Assertion: a set of information about the logged in user
‹#›IRM Summit 2014
Basic SAML setup
‹#›IRM Summit 2014
Basic SAML flow
‹#›IRM Summit 2014
Basic SAML setup
‹#›IRM Summit 2014
IdP Proxy setup
‹#›IRM Summit 2014
‹#›IRM Summit 2014
STORK■ Secure idenTity acrOss boRders linKed
■ European eID Interoperability Platform
■ Establish e-relations across borders
‹#›IRM Summit 2014
STORK
‹#›IRM Summit 2014
STORK
‹#›IRM Summit 2014
STORK
‹#›IRM Summit 2014
STORK
‹#›IRM Summit 2014
IRM
‹#›IRM Summit 2014
Demo
‹#›IRM Summit 2014
Questions?