SlideShare une entreprise Scribd logo

Unicon CAS Update March 2013

Andrew Petro
Andrew Petro

Slideware for 2013-03-27 Unicon CAS Update webinar.

Technologie
1  sur  44
Télécharger pour lire hors ligne
Unicon CAS Update 27 March 2013 Bill Thompson • Andrew Petro Wednesday, March 27, 13
Agenda 1. What is this briefing? 2. Highlights and observations 3. Unicon activities since previous update 4. Intentions 5. Next steps Wednesday, March 27, 13
Welcome to this briefing • Unicon’s CAS strategy • Sourcing support for open source software • Unicon’s “Cooperative” Support • Thank you to our support subscribers Wednesday, March 27, 13
Introduction: Andrew Petro • Jasig CAS committer, involved in CAS since before CAS 3 • 7 years with Unicon, most of which in Cooperative Support • Unicon’s Cooperative Support for CAS technical lead Wednesday, March 27, 13
This session is being recorded. • Will post after: • Slides • Notes blog post with useful hyperlinks • Slidecast with audio Wednesday, March 27, 13
Observations and Highlights Wednesday, March 27, 13
CAS Server 3.5 • Still the current stable release. • What you adopt or upgrade to today. Wednesday, March 27, 13
CAS Server 3.5.2 released February 22nd • Security fixes • require proxy chain for accessing /cas/ clearPass • handle exception on bad execution ID (looked like a JavaScript injection vulnerability, but isn’t really) • Improvements: • OAuth, monitoring, logging Wednesday, March 27, 13
CAS addons • Free and open source add-ons for CAS server • Trends towards newer, exploratory features • https://github.com/ Unicon/cas-addons Wednesday, March 27, 13
cas-addons • JSON, MongoDb Service Registry • MongoDb Service Registry • JSON Person Attribute DAO • JSON CAS ticket validation response • Stormpath Authentication Handler • ... Wednesday, March 27, 13
cas-java-clients-addons • Free and open source add-ons for Java CAS clients (Jasig Java CAS Client, Spring Security, Apache Shiro) • Trends towards newer, exploratory features • https://github.com/ Unicon/cas-java-clients- addons Wednesday, March 27, 13
Add to your Maven overlay, e.g. Wednesday, March 27, 13
CAS 4 • Roadmap: • level of assurance capabilities and attendant protocol evolution • Improved authentication APIs supporting multiple credentials, in part supporting this • Catch up documented protocol to evident practices Wednesday, March 27, 13
CAS AppSec Working Group • Public cas-appsec email list • https://wiki.jasig.org/x/goRmAw Wednesday, March 27, 13
Jasig + Sakai = Apereo • Jasig (the non-profit context for CAS, uPortal, Bedework, SSP, etc.) consolidated with the Sakai Foundation (the non-profit context for Sakai CLE, etc.) • New organization named “Apereo” • http://www.apereo.org/ Wednesday, March 27, 13
Jasig-Sakai UnConference • Held January 14-16th at ASU Polytechnic campus • discussions including • review of code towards CAS 4 • local customizations and usages of CAS • automating 2fa token onboarding Wednesday, March 27, 13
Open Apereo 2013 Conference • Registration open! • Early bird until May 3rd • ~ Sunday June 2nd through Thursday June 6th 2013 • San Diego Wednesday, March 27, 13
Apereo 2013 http://conf2013.apereo.org/schedule Wednesday, March 27, 13
CAS and Shib pre- conference seminar! Wednesday, March 27, 13
Unicon development, contribution, participation in CAS since last Update Wednesday, March 27, 13
What is “Cooperative Development”? • Sustaining engineering budget under the Cooperative Support for CAS program • Unicon maintains the supported open source software making it more supportable and valuable to subscribers • What I tell the team: “Act in the best interests of the subscribers, of the community, and of Unicon” Wednesday, March 27, 13
Maintain CAS Generally and Unicon-led features • Example: ClearPass enhanced in CAS 3.5.2 to reject bare service tickets (only proxy tickets with a blessed proxy chain allowed) Wednesday, March 27, 13
Work towards the next CAS features release (CAS 4) • support custom filters for releasing attributes to a service • improved message bundle handling (prefer an English message over failure) • JavaScript file selection power in themes • richer markup for Login form messages Wednesday, March 27, 13
Innovate on Unicon-led features • EhCache ticket registry support for bulk ticket retrieval Wednesday, March 27, 13
cas-addons • cas-addons 1.1 • Events framework • Assertions convenience class • cas-addons 1.2 • Register per-service whether login initiates a single sign-on session Wednesday, March 27, 13
cas-java-clients-addons • Spring Security extension to integrate with ClearPass • ClearPass proxy ticket validator Wednesday, March 27, 13
unicon-shibboleth-idp- template • Template Shibboleth IdP • Demonstrates deferring to CAS for login experience, credentials validation Wednesday, March 27, 13
What this means for you: tactically • Tighten ClearPass configuration • Upgrade to CAS 3.5.2 • continue to look to cas-addons etc. for extra features you might value, such as nuancing logging in to which services initiates SSO Wednesday, March 27, 13
What this means for you: strategically • Each CAS release gets a little better • Glitches and defects are addressed • Extra features available for adoption out of cas-addons Wednesday, March 27, 13
Intentions for near-term development and participation Wednesday, March 27, 13
What we do • Maintain CAS 3.5 (current stable recommended release) • Work towards CAS 4 (next release) • Explore extensions and opportunities • Responsive to inputs from subscriber experiences • Explicit requests / votes • Learn from providing support • Empathize with your needs and projects Wednesday, March 27, 13
Maintain CAS 3.5 • especially ClearPass and EhCacheTicketRegisty • Example: default ClearPass to encrypt credentials in cache • Example: revisit JSP session creation • Participate in CAS AppSec WG Wednesday, March 27, 13
Maintain client libraries • Example: more and better ClearPass support in the client libraries Wednesday, March 27, 13
Work towards CAS 4 • CAS protocol update, now with a Working Group • LPPE evolution beyond LDAP • Multi-factor authentication support Wednesday, March 27, 13
Facilitate integrations among FLOSS projects • CAS and Shibboleth IdP integration • CAS and Grouper integration? Wednesday, March 27, 13
Next Steps Wednesday, March 27, 13
This session is being recorded. • Will post after: • Slides • Notes blog post with useful hyperlinks • Slidecast with audio Wednesday, March 27, 13
Let’s do this again. • Next Unicon CAS Update: • Friday June 28th • 8:30 am Pacific == 11:30 am Eastern • This is a date change. Wednesday, March 27, 13
Feedback welcome. • By all means, please do get in touch. Wednesday, March 27, 13
Reminder to support subscribers: • You’re welcome encouraged to get in touch directly if you’d like any of this information contextualized to your specific situation. E.g., Does my particular ClearPass configuration need updated to require a proxy chain? • Feedback especially welcome. Wednesday, March 27, 13
Call to action • Consider attending Open Apereo 2013 • Likely great CAS content, certainly great colleagues to meet with and conversations to be had. • Kick it off with a pre-conference seminar or two. Wednesday, March 27, 13
Contact Information • Bill Thompson, Director of Identity and Access Management wgthom@unicon.net • Andrew Petro, Cooperative Support for CAS Technical Lead apetro@unicon.net Wednesday, March 27, 13
(License) This work is licensed under the Creative Commons Attribution-NonCommercial 3.0 United States License. To view a copy of this license, visit http://creativecommons.org/ licenses/by-nc/3.0/us/. Wednesday, March 27, 13
Photo credits • Personal photos of Jim and Andrew: all rights reserved. • Microphone: http://www.flickr.com/photos/deanhp/3711222265/ http://creativecommons.org/licenses/by/2.0/deed.en • Cactus: http://www.flickr.com/photos/robertrd/2788387337/ http://creativecommons.org/licenses/by-nc-nd/2.0/ • San Diego: http://www.flickr.com/photos/nchill4x4/3430830083/ http://creativecommons.org/licenses/by-nc-nd/2.0/ • Sun Flower: http://www.flickr.com/photos/59773274@N00 http://creativecommons.org/licenses/by/2.0/ Wednesday, March 27, 13

Recommandé

2012 Q4 Cooperative Support for CAS Update
2012 Q4 Cooperative Support for CAS Update2012 Q4 Cooperative Support for CAS Update
2012 Q4 Cooperative Support for CAS Update
Andrew Petro
 
Unite dvcs deck-uk-john stevenson
Unite dvcs deck-uk-john stevensonUnite dvcs deck-uk-john stevenson
Unite dvcs deck-uk-john stevenson
Atlassian
 
Play
PlayPlay
Play
Basav Nagur
 
Node Summit 2012
Node Summit 2012Node Summit 2012
Node Summit 2012
Monica Wilkinson
 
Building scalablewebapps
Building scalablewebappsBuilding scalablewebapps
Building scalablewebapps
Ayumu Aizawa
 
What's New in CAS 3.5
What's New in CAS 3.5What's New in CAS 3.5
What's New in CAS 3.5
Andrew Petro
 
Jasig
Jasig Jasig
Jasig
Steve Swinsburg
 
Making Cloudy Peanut Butter Cups: Apache CloudStack + Riak CS
Making Cloudy Peanut Butter Cups: Apache CloudStack + Riak CSMaking Cloudy Peanut Butter Cups: Apache CloudStack + Riak CS
Making Cloudy Peanut Butter Cups: Apache CloudStack + Riak CS
John Burwell
 

Recommandé

2012 Q4 Cooperative Support for CAS Update
2012 Q4 Cooperative Support for CAS Update2012 Q4 Cooperative Support for CAS Update
2012 Q4 Cooperative Support for CAS Update
Andrew Petro
 
Unite dvcs deck-uk-john stevenson
Unite dvcs deck-uk-john stevensonUnite dvcs deck-uk-john stevenson
Unite dvcs deck-uk-john stevenson
Atlassian
 
Play
PlayPlay
Play
Basav Nagur
 
Node Summit 2012
Node Summit 2012Node Summit 2012
Node Summit 2012
Monica Wilkinson
 
Building scalablewebapps
Building scalablewebappsBuilding scalablewebapps
Building scalablewebapps
Ayumu Aizawa
 
What's New in CAS 3.5
What's New in CAS 3.5What's New in CAS 3.5
What's New in CAS 3.5
Andrew Petro
 
Jasig
Jasig Jasig
Jasig
Steve Swinsburg
 
Making Cloudy Peanut Butter Cups: Apache CloudStack + Riak CS
Making Cloudy Peanut Butter Cups: Apache CloudStack + Riak CSMaking Cloudy Peanut Butter Cups: Apache CloudStack + Riak CS
Making Cloudy Peanut Butter Cups: Apache CloudStack + Riak CS
John Burwell
 
Stanford session
Stanford sessionStanford session
Stanford session
Ty Smith
 
Unicon Nov 2014 IAM Briefing
Unicon Nov 2014 IAM BriefingUnicon Nov 2014 IAM Briefing
Unicon Nov 2014 IAM Briefing
John Gasper
 
Unicon July 2015 IAM Briefing
Unicon July 2015 IAM BriefingUnicon July 2015 IAM Briefing
Unicon July 2015 IAM Briefing
John Gasper
 
SignalR
SignalRSignalR
SignalR
Troy Miles
 
"Esup CAS Packaging" : Deploy and customize easily a CAS4 server
"Esup CAS Packaging" : Deploy and customize easily a CAS4 server"Esup CAS Packaging" : Deploy and customize easily a CAS4 server
"Esup CAS Packaging" : Deploy and customize easily a CAS4 server
Ludovic A
 
Unicon June 2014 IAM Briefing
Unicon June 2014 IAM BriefingUnicon June 2014 IAM Briefing
Unicon June 2014 IAM Briefing
John Gasper
 
Structure Data 2014: INVERTING 80/20: BEYOND BESPOKE BIG DATA, Ari Gesher
Structure Data 2014: INVERTING 80/20: BEYOND BESPOKE BIG DATA, Ari GesherStructure Data 2014: INVERTING 80/20: BEYOND BESPOKE BIG DATA, Ari Gesher
Structure Data 2014: INVERTING 80/20: BEYOND BESPOKE BIG DATA, Ari Gesher
Gigaom
 
AUTH - SEAF
AUTH - SEAFAUTH - SEAF
AUTH - SEAF
Caroline Milne
 
Jboss Application Server training-course-navi-mumbai-jboss-course-provider-na...
Jboss Application Server training-course-navi-mumbai-jboss-course-provider-na...Jboss Application Server training-course-navi-mumbai-jboss-course-provider-na...
Jboss Application Server training-course-navi-mumbai-jboss-course-provider-na...
VibrantGroup
 
Who the heck are you? Integrating CloudStack Authentication
Who the heck are you? Integrating CloudStack AuthenticationWho the heck are you? Integrating CloudStack Authentication
Who the heck are you? Integrating CloudStack Authentication
John Burwell
 
Deploying atlassian tools in the enterprise - Dione Technology
Deploying atlassian tools in the enterprise - Dione TechnologyDeploying atlassian tools in the enterprise - Dione Technology
Deploying atlassian tools in the enterprise - Dione Technology
Matthew Cobby
 
7 Apache Process Cloudstack Developer Day
7 Apache Process Cloudstack Developer Day7 Apache Process Cloudstack Developer Day
7 Apache Process Cloudstack Developer Day
Kimihiko Kitase
 
eXo Software Factory Overview
eXo Software Factory OvervieweXo Software Factory Overview
eXo Software Factory Overview
Arnaud Héritier
 
Commercial Development And Sakai
Commercial Development And SakaiCommercial Development And Sakai
Commercial Development And Sakai
mbanting
 
Create great cncf user base from lessons learned from other open source com...
Create great cncf user base from lessons learned from other open source com...Create great cncf user base from lessons learned from other open source com...
Create great cncf user base from lessons learned from other open source com...
Krishna-Kumar
 
2021 March Pravega Community Meeting
2021 March Pravega Community Meeting2021 March Pravega Community Meeting
2021 March Pravega Community Meeting
Derek Moore
 
Exploring Postgres with Bruce Momjian
Exploring Postgres with Bruce MomjianExploring Postgres with Bruce Momjian
Exploring Postgres with Bruce Momjian
EDB
 
201708 OpenStack Seminar in Myanmar
201708 OpenStack Seminar in Myanmar201708 OpenStack Seminar in Myanmar
201708 OpenStack Seminar in Myanmar
Takashi Torii
 
Advance your Career and Help Define Java’s Future
Advance your Career and Help Define Java’s FutureAdvance your Career and Help Define Java’s Future
Advance your Career and Help Define Java’s Future
Heather VanCura
 
A View on eScience
A View on eScienceA View on eScience
A View on eScience
Charles Severance
 
Corporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptxCorporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptx
Rustici Software
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
Dropbox
 

Contenu connexe

Similaire à Unicon CAS Update March 2013

Stanford session
Stanford sessionStanford session
Stanford session
Ty Smith
 
"Esup CAS Packaging" : Deploy and customize easily a CAS4 server
"Esup CAS Packaging" : Deploy and customize easily a CAS4 server"Esup CAS Packaging" : Deploy and customize easily a CAS4 server
"Esup CAS Packaging" : Deploy and customize easily a CAS4 server
Ludovic A
 
Deploying atlassian tools in the enterprise - Dione Technology
Deploying atlassian tools in the enterprise - Dione TechnologyDeploying atlassian tools in the enterprise - Dione Technology
Deploying atlassian tools in the enterprise - Dione Technology
Matthew Cobby
 
Commercial Development And Sakai
Commercial Development And SakaiCommercial Development And Sakai
Commercial Development And Sakai
mbanting
 

Similaire à Unicon CAS Update March 2013 (20)

Stanford session
Stanford sessionStanford session
Stanford session
 
Unicon Nov 2014 IAM Briefing
Unicon Nov 2014 IAM BriefingUnicon Nov 2014 IAM Briefing
Unicon Nov 2014 IAM Briefing
 
Unicon July 2015 IAM Briefing
Unicon July 2015 IAM BriefingUnicon July 2015 IAM Briefing
Unicon July 2015 IAM Briefing
 
SignalR
SignalRSignalR
SignalR
 
"Esup CAS Packaging" : Deploy and customize easily a CAS4 server
"Esup CAS Packaging" : Deploy and customize easily a CAS4 server"Esup CAS Packaging" : Deploy and customize easily a CAS4 server
"Esup CAS Packaging" : Deploy and customize easily a CAS4 server
 
Unicon June 2014 IAM Briefing
Unicon June 2014 IAM BriefingUnicon June 2014 IAM Briefing
Unicon June 2014 IAM Briefing
 
Structure Data 2014: INVERTING 80/20: BEYOND BESPOKE BIG DATA, Ari Gesher
Structure Data 2014: INVERTING 80/20: BEYOND BESPOKE BIG DATA, Ari GesherStructure Data 2014: INVERTING 80/20: BEYOND BESPOKE BIG DATA, Ari Gesher
Structure Data 2014: INVERTING 80/20: BEYOND BESPOKE BIG DATA, Ari Gesher
 
AUTH - SEAF
AUTH - SEAFAUTH - SEAF
AUTH - SEAF
 
Jboss Application Server training-course-navi-mumbai-jboss-course-provider-na...
Jboss Application Server training-course-navi-mumbai-jboss-course-provider-na...Jboss Application Server training-course-navi-mumbai-jboss-course-provider-na...
Jboss Application Server training-course-navi-mumbai-jboss-course-provider-na...
 
Who the heck are you? Integrating CloudStack Authentication
Who the heck are you? Integrating CloudStack AuthenticationWho the heck are you? Integrating CloudStack Authentication
Who the heck are you? Integrating CloudStack Authentication
 
Deploying atlassian tools in the enterprise - Dione Technology
Deploying atlassian tools in the enterprise - Dione TechnologyDeploying atlassian tools in the enterprise - Dione Technology
Deploying atlassian tools in the enterprise - Dione Technology
 
7 Apache Process Cloudstack Developer Day
7 Apache Process Cloudstack Developer Day7 Apache Process Cloudstack Developer Day
7 Apache Process Cloudstack Developer Day
 
eXo Software Factory Overview
eXo Software Factory OvervieweXo Software Factory Overview
eXo Software Factory Overview
 
Commercial Development And Sakai
Commercial Development And SakaiCommercial Development And Sakai
Commercial Development And Sakai
 
Create great cncf user base from lessons learned from other open source com...
Create great cncf user base from lessons learned from other open source com...Create great cncf user base from lessons learned from other open source com...
Create great cncf user base from lessons learned from other open source com...
 
2021 March Pravega Community Meeting
2021 March Pravega Community Meeting2021 March Pravega Community Meeting
2021 March Pravega Community Meeting
 
Exploring Postgres with Bruce Momjian
Exploring Postgres with Bruce MomjianExploring Postgres with Bruce Momjian
Exploring Postgres with Bruce Momjian
 
201708 OpenStack Seminar in Myanmar
201708 OpenStack Seminar in Myanmar201708 OpenStack Seminar in Myanmar
201708 OpenStack Seminar in Myanmar
 
Advance your Career and Help Define Java’s Future
Advance your Career and Help Define Java’s FutureAdvance your Career and Help Define Java’s Future
Advance your Career and Help Define Java’s Future
 
A View on eScience
A View on eScienceA View on eScience
A View on eScience
 

Dernier

Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
WSO2
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
Overkill Security
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Orbitshub
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 

Dernier (20)

Corporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptxCorporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptx
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 

Unicon CAS Update March 2013

  • 1. Unicon CAS Update 27 March 2013 Bill Thompson • Andrew Petro Wednesday, March 27, 13
  • 2. Agenda 1. What is this briefing? 2. Highlights and observations 3. Unicon activities since previous update 4. Intentions 5. Next steps Wednesday, March 27, 13
  • 3. Welcome to this briefing • Unicon’s CAS strategy • Sourcing support for open source software • Unicon’s “Cooperative” Support • Thank you to our support subscribers Wednesday, March 27, 13
  • 4. Introduction: Andrew Petro • Jasig CAS committer, involved in CAS since before CAS 3 • 7 years with Unicon, most of which in Cooperative Support • Unicon’s Cooperative Support for CAS technical lead Wednesday, March 27, 13
  • 5. This session is being recorded. • Will post after: • Slides • Notes blog post with useful hyperlinks • Slidecast with audio Wednesday, March 27, 13
  • 6. Observations and Highlights Wednesday, March 27, 13
  • 7. CAS Server 3.5 • Still the current stable release. • What you adopt or upgrade to today. Wednesday, March 27, 13
  • 8. CAS Server 3.5.2 released February 22nd • Security fixes • require proxy chain for accessing /cas/ clearPass • handle exception on bad execution ID (looked like a JavaScript injection vulnerability, but isn’t really) • Improvements: • OAuth, monitoring, logging Wednesday, March 27, 13
  • 9. CAS addons • Free and open source add-ons for CAS server • Trends towards newer, exploratory features • https://github.com/ Unicon/cas-addons Wednesday, March 27, 13
  • 10. cas-addons • JSON, MongoDb Service Registry • MongoDb Service Registry • JSON Person Attribute DAO • JSON CAS ticket validation response • Stormpath Authentication Handler • ... Wednesday, March 27, 13
  • 11. cas-java-clients-addons • Free and open source add-ons for Java CAS clients (Jasig Java CAS Client, Spring Security, Apache Shiro) • Trends towards newer, exploratory features • https://github.com/ Unicon/cas-java-clients- addons Wednesday, March 27, 13
  • 12. Add to your Maven overlay, e.g. Wednesday, March 27, 13
  • 13. CAS 4 • Roadmap: • level of assurance capabilities and attendant protocol evolution • Improved authentication APIs supporting multiple credentials, in part supporting this • Catch up documented protocol to evident practices Wednesday, March 27, 13
  • 14. CAS AppSec Working Group • Public cas-appsec email list • https://wiki.jasig.org/x/goRmAw Wednesday, March 27, 13
  • 15. Jasig + Sakai = Apereo • Jasig (the non-profit context for CAS, uPortal, Bedework, SSP, etc.) consolidated with the Sakai Foundation (the non-profit context for Sakai CLE, etc.) • New organization named “Apereo” • http://www.apereo.org/ Wednesday, March 27, 13
  • 16. Jasig-Sakai UnConference • Held January 14-16th at ASU Polytechnic campus • discussions including • review of code towards CAS 4 • local customizations and usages of CAS • automating 2fa token onboarding Wednesday, March 27, 13
  • 17. Open Apereo 2013 Conference • Registration open! • Early bird until May 3rd • ~ Sunday June 2nd through Thursday June 6th 2013 • San Diego Wednesday, March 27, 13
  • 18. Apereo 2013 http://conf2013.apereo.org/schedule Wednesday, March 27, 13
  • 19. CAS and Shib pre- conference seminar! Wednesday, March 27, 13
  • 20. Unicon development, contribution, participation in CAS since last Update Wednesday, March 27, 13
  • 21. What is “Cooperative Development”? • Sustaining engineering budget under the Cooperative Support for CAS program • Unicon maintains the supported open source software making it more supportable and valuable to subscribers • What I tell the team: “Act in the best interests of the subscribers, of the community, and of Unicon” Wednesday, March 27, 13
  • 22. Maintain CAS Generally and Unicon-led features • Example: ClearPass enhanced in CAS 3.5.2 to reject bare service tickets (only proxy tickets with a blessed proxy chain allowed) Wednesday, March 27, 13
  • 23. Work towards the next CAS features release (CAS 4) • support custom filters for releasing attributes to a service • improved message bundle handling (prefer an English message over failure) • JavaScript file selection power in themes • richer markup for Login form messages Wednesday, March 27, 13
  • 24. Innovate on Unicon-led features • EhCache ticket registry support for bulk ticket retrieval Wednesday, March 27, 13
  • 25. cas-addons • cas-addons 1.1 • Events framework • Assertions convenience class • cas-addons 1.2 • Register per-service whether login initiates a single sign-on session Wednesday, March 27, 13
  • 26. cas-java-clients-addons • Spring Security extension to integrate with ClearPass • ClearPass proxy ticket validator Wednesday, March 27, 13
  • 27. unicon-shibboleth-idp- template • Template Shibboleth IdP • Demonstrates deferring to CAS for login experience, credentials validation Wednesday, March 27, 13
  • 28. What this means for you: tactically • Tighten ClearPass configuration • Upgrade to CAS 3.5.2 • continue to look to cas-addons etc. for extra features you might value, such as nuancing logging in to which services initiates SSO Wednesday, March 27, 13
  • 29. What this means for you: strategically • Each CAS release gets a little better • Glitches and defects are addressed • Extra features available for adoption out of cas-addons Wednesday, March 27, 13
  • 30. Intentions for near-term development and participation Wednesday, March 27, 13
  • 31. What we do • Maintain CAS 3.5 (current stable recommended release) • Work towards CAS 4 (next release) • Explore extensions and opportunities • Responsive to inputs from subscriber experiences • Explicit requests / votes • Learn from providing support • Empathize with your needs and projects Wednesday, March 27, 13
  • 32. Maintain CAS 3.5 • especially ClearPass and EhCacheTicketRegisty • Example: default ClearPass to encrypt credentials in cache • Example: revisit JSP session creation • Participate in CAS AppSec WG Wednesday, March 27, 13
  • 33. Maintain client libraries • Example: more and better ClearPass support in the client libraries Wednesday, March 27, 13
  • 34. Work towards CAS 4 • CAS protocol update, now with a Working Group • LPPE evolution beyond LDAP • Multi-factor authentication support Wednesday, March 27, 13
  • 35. Facilitate integrations among FLOSS projects • CAS and Shibboleth IdP integration • CAS and Grouper integration? Wednesday, March 27, 13
  • 37. This session is being recorded. • Will post after: • Slides • Notes blog post with useful hyperlinks • Slidecast with audio Wednesday, March 27, 13
  • 38. Let’s do this again. • Next Unicon CAS Update: • Friday June 28th • 8:30 am Pacific == 11:30 am Eastern • This is a date change. Wednesday, March 27, 13
  • 39. Feedback welcome. • By all means, please do get in touch. Wednesday, March 27, 13
  • 40. Reminder to support subscribers: • You’re welcome encouraged to get in touch directly if you’d like any of this information contextualized to your specific situation. E.g., Does my particular ClearPass configuration need updated to require a proxy chain? • Feedback especially welcome. Wednesday, March 27, 13
  • 41. Call to action • Consider attending Open Apereo 2013 • Likely great CAS content, certainly great colleagues to meet with and conversations to be had. • Kick it off with a pre-conference seminar or two. Wednesday, March 27, 13
  • 42. Contact Information • Bill Thompson, Director of Identity and Access Management wgthom@unicon.net • Andrew Petro, Cooperative Support for CAS Technical Lead apetro@unicon.net Wednesday, March 27, 13
  • 43. (License) This work is licensed under the Creative Commons Attribution-NonCommercial 3.0 United States License. To view a copy of this license, visit http://creativecommons.org/ licenses/by-nc/3.0/us/. Wednesday, March 27, 13
  • 44. Photo credits • Personal photos of Jim and Andrew: all rights reserved. • Microphone: http://www.flickr.com/photos/deanhp/3711222265/ http://creativecommons.org/licenses/by/2.0/deed.en • Cactus: http://www.flickr.com/photos/robertrd/2788387337/ http://creativecommons.org/licenses/by-nc-nd/2.0/ • San Diego: http://www.flickr.com/photos/nchill4x4/3430830083/ http://creativecommons.org/licenses/by-nc-nd/2.0/ • Sun Flower: http://www.flickr.com/photos/59773274@N00 http://creativecommons.org/licenses/by/2.0/ Wednesday, March 27, 13