SlideShare a Scribd company logo

2012 Q4 Cooperative Support for CAS Update

Andrew Petro
Andrew Petro

Slideware for public briefing on Unicon's Cooperative Support for CAS Q4 2012 Cooperative Development progress, intentions for Q1 2013, and other observations and highlights about Jasig CAS. http://www.unicon.net/support/cooperative

Technology
1 of 44
Download to read offline
Cooperative Support for CAS Update 13 December 2012 Bill Thompson • Andrew Petro Thursday, December 13, 12
Agenda 1. What is this briefing? 2. Other highlights and observations 3. Done this quarter 4. Intentions for next quarter 5. Next steps Thursday, December 13, 12
Welcome to this briefing • Unicon’s CAS strategy • Sourcing support for open source software • Unicon’s “Cooperative” Support • Thank you to our support subscribers Thursday, December 13, 12
Introduction: Andrew Petro • Jasig CAS committer, involved in CAS since before CAS 3 • 7 years with Unicon, most of which in Cooperative Support • Unicon’s Cooperative Support for CAS technical lead Thursday, December 13, 12
Introduction: Andrew Petro • Jasig CAS committer, involved in CAS since before CAS 3 • 7 years with Unicon, most of which in Cooperative Support • Unicon’s Cooperative Support for CAS technical lead • Now has an adorable newborn Samuel! Thursday, December 13, 12
This session is being recorded. • Will post after: • Slides • Notes blog post with useful hyperlinks • Slidecast with audio Thursday, December 13, 12
Observations and Highlights Thursday, December 13, 12
CAS Server 3.5 • Current stable release. What you adopt or upgrade to today. • LDAP password / account policy reflection (“LPPE”) • ClearPass included (turned off) • EhCache Ticket Registry • OpenID enhancements, OAuth support Thursday, December 13, 12
CAS Server 3.5.1 released October 5th • Numerous improvements • Performance • Monitoring • Internationalization • SAML and OAuth • Prevent open redirects in logout redirect URL Thursday, December 13, 12
• In service registration, optionally specify a user attribute to use in place of the traditional CAS username Thursday, December 13, 12
Per-service usernames are convenient • If a service only needs one user attribute (as its key to go look the user up somewhere else, say) • Traditional CAS protocol and clients are really good at communicating one string • Some applications not ready to cope with more complex user attributes model Thursday, December 13, 12
CAS addons • Free and open source add-ons for CAS server • Trends towards newer, exploratory features • https://github.com/ Unicon/cas-addons Thursday, December 13, 12
Add to your CAS Maven overlay. Thursday, December 13, 12
cas-addons • JSON Service Registry • MongoDb Service Registry • JSON Person Attribute DAO • JSON CAS ticket validation response • Stormpath Authentication Handler • ... Thursday, December 13, 12
cas-addons 1.0 released - What’s new? • Spring Security ClearPass support • Per-service redirect switch • Stop logins to an application and instead redirect users to a page explaining why • Active SSO sessions report • Better password encoding for matching against a database ... Thursday, December 13, 12
CAS 4 • Roadmap: • level of assurance capabilities and attendant protocol evolution • Improved authentication APIs supporting multiple credentials, in part supporting this • Catch up documented protocol to evident practices Thursday, December 13, 12
Jasig + Sakai = Apereo • Jasig (the non-profit context for CAS, uPortal, Bedework, SSP, etc.) consolidating with the Sakai Foundation (the non-profit context for Sakai CLE, etc.) • New organization named “Apereo” • http://www.apereo.org/ Thursday, December 13, 12
Jasig-Sakai UnConference • January 14-16th • Mesa, Arizona • https://wiki.jasig.org/x/ CQE_Aw Thursday, December 13, 12
Unicon offering post-un- conference trainings • CAS and Shibboleth training • Grouper training • uPortal Platform Training • Contact Unicon to learn more. Thursday, December 13, 12
Apereo 2013 Conference • Save the date! • Monday June 3rd through Thursday June 6th 2013 • San Diego Thursday, December 13, 12
Cooperative Development for CAS progress in Q4 2012 Thursday, December 13, 12
What is “Cooperative Development”? • Sustaining engineering budget under the Cooperative Support for CAS program • Unicon maintains the supported open source software making it more supportable and valuable to subscribers • What I love to tell the team: “Act in the best interests of the subscribers, of the community, and of Unicon” Thursday, December 13, 12
Maintain CAS Generally • Example: Upgraded Spring dependency to version 3.1.3 • Example: automated functional tests for CAS Thursday, December 13, 12
Maintain Unicon-led features: ClearPass • Fixed ClearPass pom.xml regarding EhCache dependency • Pending pull request to add ClearPass support to the .NET CAS Client library • Spring Security add-on adding ClearPass support Thursday, December 13, 12
Maintain Unicon-led features: LPPE • LPPE code quality improvements, attention to detail Thursday, December 13, 12
Innovate on Services Registry • Custom un-enabled service redirect URL Thursday, December 13, 12
Evolutionary feature improvement • Example: Password encoder supporting comparing against salted hashes Thursday, December 13, 12
Evolutionary feature improvement • Example: Active SSO session report Thursday, December 13, 12
What this means for you • Each CAS release gets a little better • Glitches and defects are addressed • (Sorry about the ClearPass + EhCache thing. Fixed. Again.) • Extra features available for adoption out of cas-addons Thursday, December 13, 12
Intentions for Cooperative Development for CAS Q1 2013 Thursday, December 13, 12
What we do • Maintain CAS 3.5 (current stable recommended release) • Work towards CAS 4 (next release) • Explore extensions and opportunities • Responsive to inputs from subscriber experiences • Explicit requests / votes • Learn from providing support • Empathize with your needs and projects Thursday, December 13, 12
Maintain CAS 3.5 • Fix bugs • Improve documentation as rough edges encountered Thursday, December 13, 12
Maintain client libraries • Example: phpCAS could use more and better logging • Example: more and better ClearPass support in the client libraries Thursday, December 13, 12
Work towards CAS 4 • CAS protocol update • LPPE evolution beyond LDAP • Multi-factor authentication support Thursday, December 13, 12
Extensions supporting CAS adopters • Example: active sessions report Thursday, December 13, 12
Next Steps Thursday, December 13, 12
This session is being recorded. • Will post after: • Slides • Notes blog post with useful hyperlinks • Slidecast with audio Thursday, December 13, 12
Let’s do this again. • Next Cooperative Support for CAS Update: • March 27th 2013 • 8:30 am Pacific == 11:30 am Eastern Thursday, December 13, 12
Feedback welcome. • By all means, please do get in touch. Thursday, December 13, 12
Reminder to support subscribers: • You’re welcome encouraged to get in touch directly if you’d like any of this information contextualized to your specific situation. E.g., Should I consider putting my service registry in MongoDb? Should I use the functional tests to help verify my specific upgraded CAS environment? • Feedback especially welcome. Thursday, December 13, 12
Jasig-Sakai UnConference • Tomorrow (Friday December 14th) is last day for early bird registrations! • January 14-16th ** • Mesa, Arizona • https://wiki.jasig.org/x/ CQE_Aw Thursday, December 13, 12
Contact Information • Bill Thompson, Director of Identity and Access Management wgthom@unicon.net • Andrew Petro, Cooperative Support for CAS Technical Lead apetro@unicon.net Thursday, December 13, 12
(License) This work is licensed under the Creative Commons Attribution-NonCommercial 3.0 United States License. To view a copy of this license, visit http://creativecommons.org/ licenses/by-nc/3.0/us/. Thursday, December 13, 12
Photo credits • Personal photos of Bill, Andrew, and Samuel: all rights reserved. • Microphone: http://www.flickr.com/photos/deanhp/3711222265/ http://creativecommons.org/licenses/by/2.0/deed.en • Cactus: http://www.flickr.com/photos/robertrd/2788387337/ http://creativecommons.org/licenses/by-nc-nd/2.0/ • San Diego: http://www.flickr.com/photos/nchill4x4/3430830083/ http://creativecommons.org/licenses/by-nc-nd/2.0/ • Spring flower: http://www.flickr.com/photos/markusram/7035194677/ http://creativecommons.org/licenses/by-nd/2.0/ Thursday, December 13, 12

Recommended

Unicon CAS Update March 2013
Unicon CAS Update March 2013Unicon CAS Update March 2013
Unicon CAS Update March 2013Andrew Petro
 
Unite dvcs deck-uk-john stevenson
Unite dvcs deck-uk-john stevensonUnite dvcs deck-uk-john stevenson
Unite dvcs deck-uk-john stevensonAtlassian
 
Play
PlayPlay
PlayBasav Nagur
 
Node Summit 2012
Node Summit 2012Node Summit 2012
Node Summit 2012Monica Wilkinson
 
Building scalablewebapps
Building scalablewebappsBuilding scalablewebapps
Building scalablewebappsAyumu Aizawa
 
Performance for Product Developers
Performance for Product DevelopersPerformance for Product Developers
Performance for Product DevelopersMatthew Wilkes
 
Final Report - Essam Khalid
Final Report - Essam KhalidFinal Report - Essam Khalid
Final Report - Essam KhalidEssam Khalid
 
Final COOP Report
Final COOP ReportFinal COOP Report
Final COOP ReportAhmad Alnakhli
 

Recommended

Unicon CAS Update March 2013
Unicon CAS Update March 2013Unicon CAS Update March 2013
Unicon CAS Update March 2013Andrew Petro
 
Unite dvcs deck-uk-john stevenson
Unite dvcs deck-uk-john stevensonUnite dvcs deck-uk-john stevenson
Unite dvcs deck-uk-john stevensonAtlassian
 
Play
PlayPlay
PlayBasav Nagur
 
Node Summit 2012
Node Summit 2012Node Summit 2012
Node Summit 2012Monica Wilkinson
 
Building scalablewebapps
Building scalablewebappsBuilding scalablewebapps
Building scalablewebappsAyumu Aizawa
 
Performance for Product Developers
Performance for Product DevelopersPerformance for Product Developers
Performance for Product DevelopersMatthew Wilkes
 
Final Report - Essam Khalid
Final Report - Essam KhalidFinal Report - Essam Khalid
Final Report - Essam KhalidEssam Khalid
 
Final COOP Report
Final COOP ReportFinal COOP Report
Final COOP ReportAhmad Alnakhli
 
Tulsa tech fest 2010 - web speed and scalability
Tulsa tech fest 2010 - web speed and scalabilityTulsa tech fest 2010 - web speed and scalability
Tulsa tech fest 2010 - web speed and scalabilityJason Ragsdale
 
NATO IST Symposium 2013
NATO IST Symposium 2013NATO IST Symposium 2013
NATO IST Symposium 2013Patrick Chanezon
 
Proud to be polyglot!
Proud to be polyglot!Proud to be polyglot!
Proud to be polyglot!NLJUG
 
Building Antifragile Applications with Apache Cassandra
Building Antifragile Applications with Apache CassandraBuilding Antifragile Applications with Apache Cassandra
Building Antifragile Applications with Apache CassandraPatrick McFadin
 
Apereo OAE - Bootcamp
Apereo OAE - BootcampApereo OAE - Bootcamp
Apereo OAE - BootcampNicolaas Matthijs
 
Lisa12 methodologies
Lisa12 methodologiesLisa12 methodologies
Lisa12 methodologiesBrendan Gregg
 
Drupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: LaunchingDrupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: LaunchingAcquia
 
Cloud Foundry the Open PaaS - OpenTour Austin Keynote
Cloud Foundry the Open PaaS - OpenTour Austin KeynoteCloud Foundry the Open PaaS - OpenTour Austin Keynote
Cloud Foundry the Open PaaS - OpenTour Austin KeynotePatrick Chanezon
 
Using Apache Cassandra: What is this thing, and how do I use it?
Using Apache Cassandra: What is this thing, and how do I use it?Using Apache Cassandra: What is this thing, and how do I use it?
Using Apache Cassandra: What is this thing, and how do I use it?jeremiahdjordan
 
Building A Scalable Open Source Storage Solution
Building A Scalable Open Source Storage SolutionBuilding A Scalable Open Source Storage Solution
Building A Scalable Open Source Storage SolutionPhil Cryer
 
Future of Data Intensive Applicaitons
Future of Data Intensive ApplicaitonsFuture of Data Intensive Applicaitons
Future of Data Intensive ApplicaitonsMilind Bhandarkar
 
Cassandra at scale
Cassandra at scaleCassandra at scale
Cassandra at scalePatrick McFadin
 
PuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That WasPuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That WasWalter Heck
 
PuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That WasPuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That WasOlinData
 
Cloud Foundry OpenTour Kiev Keynote
Cloud Foundry OpenTour Kiev KeynoteCloud Foundry OpenTour Kiev Keynote
Cloud Foundry OpenTour Kiev KeynotePatrick Chanezon
 
Cloud4all Architecture Overview
Cloud4all Architecture OverviewCloud4all Architecture Overview
Cloud4all Architecture Overviewicchp2012
 
Optimizing WordPress Performance on Shared Web Hosting
Optimizing WordPress Performance on Shared Web HostingOptimizing WordPress Performance on Shared Web Hosting
Optimizing WordPress Performance on Shared Web HostingJon Brown
 
Node.js, toy or power tool?
Node.js, toy or power tool?Node.js, toy or power tool?
Node.js, toy or power tool?Ovidiu Dimulescu
 
Cloud stack design camp on jun 15
Cloud stack design camp on jun 15Cloud stack design camp on jun 15
Cloud stack design camp on jun 15Isaac Chiang
 
Adapt and respond: keeping responsive into the future
Adapt and respond: keeping responsive into the futureAdapt and respond: keeping responsive into the future
Adapt and respond: keeping responsive into the futureChris Mills
 
ERP Contender Series: Acumatica vs. Sage Intacct
ERP Contender Series: Acumatica vs. Sage IntacctERP Contender Series: Acumatica vs. Sage Intacct
ERP Contender Series: Acumatica vs. Sage IntacctBrainSell Technologies
 
How to Check CNIC Information Online with Pakdata cf
How to Check CNIC Information Online with Pakdata cfHow to Check CNIC Information Online with Pakdata cf
How to Check CNIC Information Online with Pakdata cfdanishmna97
 

More Related Content

Similar to 2012 Q4 Cooperative Support for CAS Update

Tulsa tech fest 2010 - web speed and scalability
Tulsa tech fest 2010 - web speed and scalabilityTulsa tech fest 2010 - web speed and scalability
Tulsa tech fest 2010 - web speed and scalabilityJason Ragsdale
 
Proud to be polyglot!
Proud to be polyglot!Proud to be polyglot!
Proud to be polyglot!NLJUG
 
Building Antifragile Applications with Apache Cassandra
Building Antifragile Applications with Apache CassandraBuilding Antifragile Applications with Apache Cassandra
Building Antifragile Applications with Apache CassandraPatrick McFadin
 
Lisa12 methodologies
Lisa12 methodologiesLisa12 methodologies
Lisa12 methodologiesBrendan Gregg
 
Drupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: LaunchingDrupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: LaunchingAcquia
 
Cloud Foundry the Open PaaS - OpenTour Austin Keynote
Cloud Foundry the Open PaaS - OpenTour Austin KeynoteCloud Foundry the Open PaaS - OpenTour Austin Keynote
Cloud Foundry the Open PaaS - OpenTour Austin KeynotePatrick Chanezon
 
Using Apache Cassandra: What is this thing, and how do I use it?
Using Apache Cassandra: What is this thing, and how do I use it?Using Apache Cassandra: What is this thing, and how do I use it?
Using Apache Cassandra: What is this thing, and how do I use it?jeremiahdjordan
 
Building A Scalable Open Source Storage Solution
Building A Scalable Open Source Storage SolutionBuilding A Scalable Open Source Storage Solution
Building A Scalable Open Source Storage SolutionPhil Cryer
 
Future of Data Intensive Applicaitons
Future of Data Intensive ApplicaitonsFuture of Data Intensive Applicaitons
Future of Data Intensive ApplicaitonsMilind Bhandarkar
 
PuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That WasPuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That WasWalter Heck
 
PuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That WasPuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That WasOlinData
 
Cloud Foundry OpenTour Kiev Keynote
Cloud Foundry OpenTour Kiev KeynoteCloud Foundry OpenTour Kiev Keynote
Cloud Foundry OpenTour Kiev KeynotePatrick Chanezon
 
Cloud4all Architecture Overview
Cloud4all Architecture OverviewCloud4all Architecture Overview
Cloud4all Architecture Overviewicchp2012
 
Optimizing WordPress Performance on Shared Web Hosting
Optimizing WordPress Performance on Shared Web HostingOptimizing WordPress Performance on Shared Web Hosting
Optimizing WordPress Performance on Shared Web HostingJon Brown
 
Node.js, toy or power tool?
Node.js, toy or power tool?Node.js, toy or power tool?
Node.js, toy or power tool?Ovidiu Dimulescu
 
Cloud stack design camp on jun 15
Cloud stack design camp on jun 15Cloud stack design camp on jun 15
Cloud stack design camp on jun 15Isaac Chiang
 
Adapt and respond: keeping responsive into the future
Adapt and respond: keeping responsive into the futureAdapt and respond: keeping responsive into the future
Adapt and respond: keeping responsive into the futureChris Mills
 

Similar to 2012 Q4 Cooperative Support for CAS Update (20)

Tulsa tech fest 2010 - web speed and scalability
Tulsa tech fest 2010 - web speed and scalabilityTulsa tech fest 2010 - web speed and scalability
Tulsa tech fest 2010 - web speed and scalability
 
NATO IST Symposium 2013
NATO IST Symposium 2013NATO IST Symposium 2013
NATO IST Symposium 2013
 
Proud to be polyglot!
Proud to be polyglot!Proud to be polyglot!
Proud to be polyglot!
 
Building Antifragile Applications with Apache Cassandra
Building Antifragile Applications with Apache CassandraBuilding Antifragile Applications with Apache Cassandra
Building Antifragile Applications with Apache Cassandra
 
Apereo OAE - Bootcamp
Apereo OAE - BootcampApereo OAE - Bootcamp
Apereo OAE - Bootcamp
 
Lisa12 methodologies
Lisa12 methodologiesLisa12 methodologies
Lisa12 methodologies
 
Drupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: LaunchingDrupal for Project Managers, Part 3: Launching
Drupal for Project Managers, Part 3: Launching
 
Cloud Foundry the Open PaaS - OpenTour Austin Keynote
Cloud Foundry the Open PaaS - OpenTour Austin KeynoteCloud Foundry the Open PaaS - OpenTour Austin Keynote
Cloud Foundry the Open PaaS - OpenTour Austin Keynote
 
Using Apache Cassandra: What is this thing, and how do I use it?
Using Apache Cassandra: What is this thing, and how do I use it?Using Apache Cassandra: What is this thing, and how do I use it?
Using Apache Cassandra: What is this thing, and how do I use it?
 
Building A Scalable Open Source Storage Solution
Building A Scalable Open Source Storage SolutionBuilding A Scalable Open Source Storage Solution
Building A Scalable Open Source Storage Solution
 
Future of Data Intensive Applicaitons
Future of Data Intensive ApplicaitonsFuture of Data Intensive Applicaitons
Future of Data Intensive Applicaitons
 
Cassandra at scale
Cassandra at scaleCassandra at scale
Cassandra at scale
 
PuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That WasPuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
 
PuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That WasPuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
PuppetCamp SEA @ Blk 71 - Puppet: The Year That Was
 
Cloud Foundry OpenTour Kiev Keynote
Cloud Foundry OpenTour Kiev KeynoteCloud Foundry OpenTour Kiev Keynote
Cloud Foundry OpenTour Kiev Keynote
 
Cloud4all Architecture Overview
Cloud4all Architecture OverviewCloud4all Architecture Overview
Cloud4all Architecture Overview
 
Optimizing WordPress Performance on Shared Web Hosting
Optimizing WordPress Performance on Shared Web HostingOptimizing WordPress Performance on Shared Web Hosting
Optimizing WordPress Performance on Shared Web Hosting
 
Node.js, toy or power tool?
Node.js, toy or power tool?Node.js, toy or power tool?
Node.js, toy or power tool?
 
Cloud stack design camp on jun 15
Cloud stack design camp on jun 15Cloud stack design camp on jun 15
Cloud stack design camp on jun 15
 
Adapt and respond: keeping responsive into the future
Adapt and respond: keeping responsive into the futureAdapt and respond: keeping responsive into the future
Adapt and respond: keeping responsive into the future
 

Recently uploaded

ERP Contender Series: Acumatica vs. Sage Intacct
ERP Contender Series: Acumatica vs. Sage IntacctERP Contender Series: Acumatica vs. Sage Intacct
ERP Contender Series: Acumatica vs. Sage IntacctBrainSell Technologies
 
How to Check CNIC Information Online with Pakdata cf
How to Check CNIC Information Online with Pakdata cfHow to Check CNIC Information Online with Pakdata cf
How to Check CNIC Information Online with Pakdata cfdanishmna97
 
TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...
TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...
TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...TrustArc
 
Observability Concepts EVERY Developer Should Know (DevOpsDays Seattle)
Observability Concepts EVERY Developer Should Know (DevOpsDays Seattle)Observability Concepts EVERY Developer Should Know (DevOpsDays Seattle)
Observability Concepts EVERY Developer Should Know (DevOpsDays Seattle)Paige Cruz
 
AI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by AnitarajAI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by AnitarajAnitaRaj43
 
Simplifying Mobile A11y Presentation.pptx
Simplifying Mobile A11y Presentation.pptxSimplifying Mobile A11y Presentation.pptx
Simplifying Mobile A11y Presentation.pptxMarkSteadman7
 
Hyatt driving innovation and exceptional customer experiences with FIDO passw...
Hyatt driving innovation and exceptional customer experiences with FIDO passw...Hyatt driving innovation and exceptional customer experiences with FIDO passw...
Hyatt driving innovation and exceptional customer experiences with FIDO passw...FIDO Alliance
 
WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024Lorenzo Miniero
 
Microsoft BitLocker Bypass Attack Method.pdf
Microsoft BitLocker Bypass Attack Method.pdfMicrosoft BitLocker Bypass Attack Method.pdf
Microsoft BitLocker Bypass Attack Method.pdfOverkill Security
 
ChatGPT and Beyond - Elevating DevOps Productivity
ChatGPT and Beyond - Elevating DevOps ProductivityChatGPT and Beyond - Elevating DevOps Productivity
ChatGPT and Beyond - Elevating DevOps ProductivityVictorSzoltysek
 
Introduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDMIntroduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDMKumar Satyam
 
Microsoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - QuestionnaireMicrosoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - QuestionnaireExakis Nelite
 
Harnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptx
Harnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptxHarnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptx
Harnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptxFIDO Alliance
 
CORS (Kitworks Team Study 양다윗 발표자료 240510)
CORS (Kitworks Team Study 양다윗 발표자료 240510)CORS (Kitworks Team Study 양다윗 발표자료 240510)
CORS (Kitworks Team Study 양다윗 발표자료 240510)Wonjun Hwang
 
الأمن السيبراني - ما لا يسع للمستخدم جهله
الأمن السيبراني - ما لا يسع للمستخدم جهلهالأمن السيبراني - ما لا يسع للمستخدم جهله
الأمن السيبراني - ما لا يسع للمستخدم جهلهMohamed Sweelam
 
ADP Passwordless Journey Case Study.pptx
ADP Passwordless Journey Case Study.pptxADP Passwordless Journey Case Study.pptx
ADP Passwordless Journey Case Study.pptxFIDO Alliance
 
Tales from a Passkey Provider Progress from Awareness to Implementation.pptx
Tales from a Passkey Provider Progress from Awareness to Implementation.pptxTales from a Passkey Provider Progress from Awareness to Implementation.pptx
Tales from a Passkey Provider Progress from Awareness to Implementation.pptxFIDO Alliance
 
Top 10 CodeIgniter Development Companies
Top 10 CodeIgniter Development CompaniesTop 10 CodeIgniter Development Companies
Top 10 CodeIgniter Development CompaniesTopCSSGallery
 
Portal Kombat : extension du réseau de propagande russe
Portal Kombat : extension du réseau de propagande russePortal Kombat : extension du réseau de propagande russe
Portal Kombat : extension du réseau de propagande russe中 央社
 
Frisco Automating Purchase Orders with MuleSoft IDP- May 10th, 2024.pptx.pdf
Frisco Automating Purchase Orders with MuleSoft IDP- May 10th, 2024.pptx.pdfFrisco Automating Purchase Orders with MuleSoft IDP- May 10th, 2024.pptx.pdf
Frisco Automating Purchase Orders with MuleSoft IDP- May 10th, 2024.pptx.pdfAnubhavMangla3
 

Recently uploaded (20)

ERP Contender Series: Acumatica vs. Sage Intacct
ERP Contender Series: Acumatica vs. Sage IntacctERP Contender Series: Acumatica vs. Sage Intacct
ERP Contender Series: Acumatica vs. Sage Intacct
 
How to Check CNIC Information Online with Pakdata cf
How to Check CNIC Information Online with Pakdata cfHow to Check CNIC Information Online with Pakdata cf
How to Check CNIC Information Online with Pakdata cf
 
TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...
TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...
TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...
 
Observability Concepts EVERY Developer Should Know (DevOpsDays Seattle)
Observability Concepts EVERY Developer Should Know (DevOpsDays Seattle)Observability Concepts EVERY Developer Should Know (DevOpsDays Seattle)
Observability Concepts EVERY Developer Should Know (DevOpsDays Seattle)
 
AI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by AnitarajAI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by Anitaraj
 
Simplifying Mobile A11y Presentation.pptx
Simplifying Mobile A11y Presentation.pptxSimplifying Mobile A11y Presentation.pptx
Simplifying Mobile A11y Presentation.pptx
 
Hyatt driving innovation and exceptional customer experiences with FIDO passw...
Hyatt driving innovation and exceptional customer experiences with FIDO passw...Hyatt driving innovation and exceptional customer experiences with FIDO passw...
Hyatt driving innovation and exceptional customer experiences with FIDO passw...
 
WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024
 
Microsoft BitLocker Bypass Attack Method.pdf
Microsoft BitLocker Bypass Attack Method.pdfMicrosoft BitLocker Bypass Attack Method.pdf
Microsoft BitLocker Bypass Attack Method.pdf
 
ChatGPT and Beyond - Elevating DevOps Productivity
ChatGPT and Beyond - Elevating DevOps ProductivityChatGPT and Beyond - Elevating DevOps Productivity
ChatGPT and Beyond - Elevating DevOps Productivity
 
Introduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDMIntroduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDM
 
Microsoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - QuestionnaireMicrosoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - Questionnaire
 
Harnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptx
Harnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptxHarnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptx
Harnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptx
 
CORS (Kitworks Team Study 양다윗 발표자료 240510)
CORS (Kitworks Team Study 양다윗 발표자료 240510)CORS (Kitworks Team Study 양다윗 발표자료 240510)
CORS (Kitworks Team Study 양다윗 발표자료 240510)
 
الأمن السيبراني - ما لا يسع للمستخدم جهله
الأمن السيبراني - ما لا يسع للمستخدم جهلهالأمن السيبراني - ما لا يسع للمستخدم جهله
الأمن السيبراني - ما لا يسع للمستخدم جهله
 
ADP Passwordless Journey Case Study.pptx
ADP Passwordless Journey Case Study.pptxADP Passwordless Journey Case Study.pptx
ADP Passwordless Journey Case Study.pptx
 
Tales from a Passkey Provider Progress from Awareness to Implementation.pptx
Tales from a Passkey Provider Progress from Awareness to Implementation.pptxTales from a Passkey Provider Progress from Awareness to Implementation.pptx
Tales from a Passkey Provider Progress from Awareness to Implementation.pptx
 
Top 10 CodeIgniter Development Companies
Top 10 CodeIgniter Development CompaniesTop 10 CodeIgniter Development Companies
Top 10 CodeIgniter Development Companies
 
Portal Kombat : extension du réseau de propagande russe
Portal Kombat : extension du réseau de propagande russePortal Kombat : extension du réseau de propagande russe
Portal Kombat : extension du réseau de propagande russe
 
Frisco Automating Purchase Orders with MuleSoft IDP- May 10th, 2024.pptx.pdf
Frisco Automating Purchase Orders with MuleSoft IDP- May 10th, 2024.pptx.pdfFrisco Automating Purchase Orders with MuleSoft IDP- May 10th, 2024.pptx.pdf
Frisco Automating Purchase Orders with MuleSoft IDP- May 10th, 2024.pptx.pdf
 

2012 Q4 Cooperative Support for CAS Update

  • 1. Cooperative Support for CAS Update 13 December 2012 Bill Thompson • Andrew Petro Thursday, December 13, 12
  • 2. Agenda 1. What is this briefing? 2. Other highlights and observations 3. Done this quarter 4. Intentions for next quarter 5. Next steps Thursday, December 13, 12
  • 3. Welcome to this briefing • Unicon’s CAS strategy • Sourcing support for open source software • Unicon’s “Cooperative” Support • Thank you to our support subscribers Thursday, December 13, 12
  • 4. Introduction: Andrew Petro • Jasig CAS committer, involved in CAS since before CAS 3 • 7 years with Unicon, most of which in Cooperative Support • Unicon’s Cooperative Support for CAS technical lead Thursday, December 13, 12
  • 5. Introduction: Andrew Petro • Jasig CAS committer, involved in CAS since before CAS 3 • 7 years with Unicon, most of which in Cooperative Support • Unicon’s Cooperative Support for CAS technical lead • Now has an adorable newborn Samuel! Thursday, December 13, 12
  • 6. This session is being recorded. • Will post after: • Slides • Notes blog post with useful hyperlinks • Slidecast with audio Thursday, December 13, 12
  • 7. Observations and Highlights Thursday, December 13, 12
  • 8. CAS Server 3.5 • Current stable release. What you adopt or upgrade to today. • LDAP password / account policy reflection (“LPPE”) • ClearPass included (turned off) • EhCache Ticket Registry • OpenID enhancements, OAuth support Thursday, December 13, 12
  • 9. CAS Server 3.5.1 released October 5th • Numerous improvements • Performance • Monitoring • Internationalization • SAML and OAuth • Prevent open redirects in logout redirect URL Thursday, December 13, 12
  • 10. In service registration, optionally specify a user attribute to use in place of the traditional CAS username Thursday, December 13, 12
  • 11. Per-service usernames are convenient • If a service only needs one user attribute (as its key to go look the user up somewhere else, say) • Traditional CAS protocol and clients are really good at communicating one string • Some applications not ready to cope with more complex user attributes model Thursday, December 13, 12
  • 12. CAS addons • Free and open source add-ons for CAS server • Trends towards newer, exploratory features • https://github.com/ Unicon/cas-addons Thursday, December 13, 12
  • 13. Add to your CAS Maven overlay. Thursday, December 13, 12
  • 14. cas-addons • JSON Service Registry • MongoDb Service Registry • JSON Person Attribute DAO • JSON CAS ticket validation response • Stormpath Authentication Handler • ... Thursday, December 13, 12
  • 15. cas-addons 1.0 released - What’s new? • Spring Security ClearPass support • Per-service redirect switch • Stop logins to an application and instead redirect users to a page explaining why • Active SSO sessions report • Better password encoding for matching against a database ... Thursday, December 13, 12
  • 16. CAS 4 • Roadmap: • level of assurance capabilities and attendant protocol evolution • Improved authentication APIs supporting multiple credentials, in part supporting this • Catch up documented protocol to evident practices Thursday, December 13, 12
  • 17. Jasig + Sakai = Apereo • Jasig (the non-profit context for CAS, uPortal, Bedework, SSP, etc.) consolidating with the Sakai Foundation (the non-profit context for Sakai CLE, etc.) • New organization named “Apereo” • http://www.apereo.org/ Thursday, December 13, 12
  • 18. Jasig-Sakai UnConference • January 14-16th • Mesa, Arizona • https://wiki.jasig.org/x/ CQE_Aw Thursday, December 13, 12
  • 19. Unicon offering post-un- conference trainings • CAS and Shibboleth training • Grouper training • uPortal Platform Training • Contact Unicon to learn more. Thursday, December 13, 12
  • 20. Apereo 2013 Conference • Save the date! • Monday June 3rd through Thursday June 6th 2013 • San Diego Thursday, December 13, 12
  • 21. Cooperative Development for CAS progress in Q4 2012 Thursday, December 13, 12
  • 22. What is “Cooperative Development”? • Sustaining engineering budget under the Cooperative Support for CAS program • Unicon maintains the supported open source software making it more supportable and valuable to subscribers • What I love to tell the team: “Act in the best interests of the subscribers, of the community, and of Unicon” Thursday, December 13, 12
  • 23. Maintain CAS Generally • Example: Upgraded Spring dependency to version 3.1.3 • Example: automated functional tests for CAS Thursday, December 13, 12
  • 24. Maintain Unicon-led features: ClearPass • Fixed ClearPass pom.xml regarding EhCache dependency • Pending pull request to add ClearPass support to the .NET CAS Client library • Spring Security add-on adding ClearPass support Thursday, December 13, 12
  • 25. Maintain Unicon-led features: LPPE • LPPE code quality improvements, attention to detail Thursday, December 13, 12
  • 26. Innovate on Services Registry • Custom un-enabled service redirect URL Thursday, December 13, 12
  • 27. Evolutionary feature improvement • Example: Password encoder supporting comparing against salted hashes Thursday, December 13, 12
  • 28. Evolutionary feature improvement • Example: Active SSO session report Thursday, December 13, 12
  • 29. What this means for you • Each CAS release gets a little better • Glitches and defects are addressed • (Sorry about the ClearPass + EhCache thing. Fixed. Again.) • Extra features available for adoption out of cas-addons Thursday, December 13, 12
  • 30. Intentions for Cooperative Development for CAS Q1 2013 Thursday, December 13, 12
  • 31. What we do • Maintain CAS 3.5 (current stable recommended release) • Work towards CAS 4 (next release) • Explore extensions and opportunities • Responsive to inputs from subscriber experiences • Explicit requests / votes • Learn from providing support • Empathize with your needs and projects Thursday, December 13, 12
  • 32. Maintain CAS 3.5 • Fix bugs • Improve documentation as rough edges encountered Thursday, December 13, 12
  • 33. Maintain client libraries • Example: phpCAS could use more and better logging • Example: more and better ClearPass support in the client libraries Thursday, December 13, 12
  • 34. Work towards CAS 4 • CAS protocol update • LPPE evolution beyond LDAP • Multi-factor authentication support Thursday, December 13, 12
  • 35. Extensions supporting CAS adopters • Example: active sessions report Thursday, December 13, 12
  • 37. This session is being recorded. • Will post after: • Slides • Notes blog post with useful hyperlinks • Slidecast with audio Thursday, December 13, 12
  • 38. Let’s do this again. • Next Cooperative Support for CAS Update: • March 27th 2013 • 8:30 am Pacific == 11:30 am Eastern Thursday, December 13, 12
  • 39. Feedback welcome. • By all means, please do get in touch. Thursday, December 13, 12
  • 40. Reminder to support subscribers: • You’re welcome encouraged to get in touch directly if you’d like any of this information contextualized to your specific situation. E.g., Should I consider putting my service registry in MongoDb? Should I use the functional tests to help verify my specific upgraded CAS environment? • Feedback especially welcome. Thursday, December 13, 12
  • 41. Jasig-Sakai UnConference • Tomorrow (Friday December 14th) is last day for early bird registrations! • January 14-16th ** • Mesa, Arizona • https://wiki.jasig.org/x/ CQE_Aw Thursday, December 13, 12
  • 42. Contact Information • Bill Thompson, Director of Identity and Access Management wgthom@unicon.net • Andrew Petro, Cooperative Support for CAS Technical Lead apetro@unicon.net Thursday, December 13, 12
  • 43. (License) This work is licensed under the Creative Commons Attribution-NonCommercial 3.0 United States License. To view a copy of this license, visit http://creativecommons.org/ licenses/by-nc/3.0/us/. Thursday, December 13, 12
  • 44. Photo credits • Personal photos of Bill, Andrew, and Samuel: all rights reserved. • Microphone: http://www.flickr.com/photos/deanhp/3711222265/ http://creativecommons.org/licenses/by/2.0/deed.en • Cactus: http://www.flickr.com/photos/robertrd/2788387337/ http://creativecommons.org/licenses/by-nc-nd/2.0/ • San Diego: http://www.flickr.com/photos/nchill4x4/3430830083/ http://creativecommons.org/licenses/by-nc-nd/2.0/ • Spring flower: http://www.flickr.com/photos/markusram/7035194677/ http://creativecommons.org/licenses/by-nd/2.0/ Thursday, December 13, 12