This document discusses the development of Authbucket, a single sign-on authentication platform. It finds that existing SSO solutions focus on specific products and lack general applicability. Authbucket aims to provide a secure, standardized identity management solution for web, apps, and devices. The implementation plan involves alpha and beta releases of the command line and web interfaces, followed by third party integrations. The project team is a Hong Kong FOSS service provider with experience developing Drupal solutions and partnerships with AWS, Acquia, Atlassian, and other technology companies. They will use agile project management practices like GIT, TDD, BDD, and CI.
2. Market Findings
● Currently, there lacks of a single sign-on solution for widely-use, even though….
- PHP is used by 81.3% of all the websites whose server-side programming language we
know.
- Drupal is used by 2.1% of all the websites, that is a content management system market
share of 5%.
- Drupal ranks at 9% on Top 10k CMS website in the world.
Ref: http://trends.builtwith.com/cms
● Difficulties for Individual users and Enterprise users
- upgrade/update software
- multiple login prompts
- security issue
- increasing R&D and maintenance costs
- operational inefficiency etc.
3. Market Needs and Commercial Scale
● Learnt from clients use case and requirements
- on-premise secure authentication system
- enterprise efficiency
● Reasonable Chances for successful commercialization
- Large scale of target market
Manage thousands of users
Hundreds of groups
Tons of apps
- Security & access policy enforcement
- IT & end-user efficiency
- Save administration overhead
4. Introduction - Authbucket
●
A secure authentication platform product enabling users to login with unified identify
account across all Web, Apps and Devices.
● Innovative Component and Technological Content
- Authbucket APIs use the OAuth 2.0 protocol for authentication and authorization.
- Get started with connectors for Active Directory, LDAP, Authbucket or any mix thereof.
- Apps integration gives developers one polished Web interface for every user and group.
- Manage application permissions in one place, from the same console.
- Customize Authbucket for your needs with custom authenticators and connectors
shared on the Drupal Modules.
5. Competitive Analysis
● Existing SOO solutions mainly focus on business-
family products, like
- Atlassian Crowd
- Oracle Enterprise Identity Service
- Google Identity Service
- OpenStack Identity Service
● Lack of general applicability
● High level of accessibility
6. Competitive Analysis
Strengths
- community support without warranty,
GPL (open source, FOSS)
- on-premises enterprise version of
authbucket, which you can deploy and
manage in your own, with support and
warranty
- standardized identity management, i.e.
easy update/upgrade for individual system,
better security, easy R&D/maintenance,
low TCO
Weakness
- R&D costs for development and man-
power
Opportunities
- solution are required and proved by
clients use case
- built to scale
- extend with add-ons (Drupal modules)
- existing Single Sign-on Solutions only
targeted at own family products
Threats
- mature enterprise Single Sign-on
Solutions on big branding companies
7. Project Implementation Plan
● 1st project milestone (25%)
- Alpha phase release with the Command Line Interface
- Mainly focus on Authbucket development and debug
- Features are said to be completed.
● 2nd project milestone (35%)
- Beta phase release with Web UI Interface
- Target at wide administrators, incorporating usability testing.
● 3rd project milestone (40%)
- Third party integration with Authbucket
- Implementing other platforms (e.g.Wordpress, Joomla, facebook,
LinkedIn etc.) connecting with Authbucket.
8. Project Team - PantaRei Design
● Hong Kong based Free and Open Source Software (FOSS) service provider
– Content Management System (CMS) with Drupal
– Cloud hosting with Amazon Web Services (AWS)
– Team collaborate solution with Atlassian
● History
– 2010
● Founded by Edison Wong
● Applicant of The Hong Kong Federation of Youth Groups (HKFYG) Youth Business Hong Kong
(YBHK) Programme
– 2011
● Applicant of Innovation and Technology Fund (ITF) Small Entrepreneur Research Assistance
Programme (SERAP)
● Applicant of Hong Kong Science & Technology Parks (HKSTP) Incu-Tech Programme
– 2014
● Graduate as HKSTP Talent
9. Project Team - PantaRei Design
● As Top 7% Contributor for Drupal 7
– 2008 - Hong Kong Drupal User Group Co-founder
– 2012 - Drupal Services Provider
● Business Partnership
– 2012 - AWS Consulting Partner
– 2013 - Acquia Partner
– 2013 - Atlassian Experts
– 2014 - Rackspace Hosting Partner
– 2015 - IBM Softlayer Partner
● Client Portfolios
South China Morning Post (NCMP), CNN
The Foreign Correspondents' Club (FCCHK), Networksasia
Hong Kong Business Angel Network (HKBAN), British Council
Sanrio Digital, EnterpriseInnovation, Questex Asia
HKUST, HKAPA, PolyU, CUHK etc.
10. Project Team Management
● Agile Project Management
- continuous improvement, scope flexibility, team input, and
delivering essential quality products.
● GIT
- open source distributed version control system designed to
handle everything from small to very large projects with speed
and efficiency.
● TDD: Test driven development
● BDD: behavior driven development
● CI: Continuous Integration