[CONF] Apache Syncope > [DISCUSS] Access Management features
Title: Message Title There's 1 new edit on this page [DISCUSS] Access Management features Francesco Chicchiricco edited this page Here's what changed: ... 3rd party apps authentication, SSO and authorization: Act as SAML 2.0 Identity Provider; Integrate via mod_shib (Apache HTTPd) nginx-http-shibboleth (Nginx) iis7_shib.dll (IIS) Act as OpenID Connect 1.0 Provider, gain certification; integrate via mod_auth_openidc (Apache HTTPd) nginx-openid-connect (Nginx) Microsoft.AspNetCore.Authentication.OpenIdConnect .Net package (IIS) Implement the latest version available of the CAS protocol; integrate via the various CAS clients available: Apache HTTPd Nginx Java .NET PHP Perl Python Ruby Standard set of authentication modules, and API to extend / create new ones: JAAS username / password with different back-ends (DBMS, LDAP, ...) TLS client certificate Time-based One-time password SAML 2.0 SP OpenID Connect 1.0 Client Radius Kerberos U2F WebAuthn ... Authentication chains by combining more authentication modules, similar to Linux's PAM (required, sufficient, requisite, ...) Step-up authentication (e.g. associate level to authentication modules in a chain, and let 3rd party apps require minimum level to access) Multi-factor authentication Authorization Access Policies URL-based grant-based (for JWT) Implement XACML 3.0 Implement UMA Components (New) Flexible UI for web access dynamically adapting for the configured authentication features (modules, chains, levels, ...) highly customizable, either graphically and processing (NEW) API gateway for REST APIs authentication and authorization Core, which will provide additional REST endpoints for Access Management features ... Go to page history View page Stop watching space • Manage notifications This message was sent by Atlassian Confluence 6.9.0
[CONF] Apache Syncope > [DISCUSS] Access Management features
Title: Message Title There's 1 new edit on this page [DISCUSS] Access Management features Francesco Chicchiricco edited this page Here's what changed: ... 3rd party apps authentication, SSO and authorization: Act as SAML 2.0 Identity Provider; Integrate via mod_shib (Apache HTTPd) nginx-http-shibboleth (Nginx) iis7_shib.dll (IIS) Act as OpenID Connect 1.0 Provider, gain certification; integrate via mod_auth_openidc (Apache HTTPd) nginx-openid-connect (Nginx) Microsoft.AspNetCore.Authentication.OpenIdConnect .Net package (IIS) Implement the latest version available of the CAS protocol; integrate via the various CAS clients available: Apache HTTPd Nginx Java .NET PHP Perl Python Ruby Standard set of authentication modules, and API to extend / create new ones: username / password with different back-ends (DBMS, LDAP, ...) TLS client certificate Time-based One-time password SAML 2.0 SP OpenID Connect 1.0 Client Radius U2F WebAuthn ... Authentication chains by combining more authentication modules, similar to Linux's PAM (required, sufficient, requisite, ...) Step-up authentication (e.g. associate level to authentication modules in a chain, and let 3rd party apps require minimum level to access) Multi-factor authentication Authorization Access Policies URL-based grant-based (for JWT) Implement XACML 3.0 Components (New) Flexible UI for web access dynamically adapting for the configured authentication features (modules, chains, levels, ...) highly customizable, either graphically and processing (NEW) API gateway for REST APIs authentication and authorization Core, which will provide additional REST endpoints for Access Management features References Projects and products ... Go to page history View page Stop watching space • Manage notifications This message was sent by Atlassian Confluence 6.9.0
[CONF] Apache Syncope > [DISCUSS] Access Management features
Title: Message Title There's 1 new edit on this page [DISCUSS] Access Management features Francesco Chicchiricco edited this page Here's what changed: ... 3rd party apps authentication, SSO and authorization: Act as SAML 2.0 Identity Provider; Integrate via Integrate via mod_shib (Apache HTTPd), nginx-http-shibboleth (Nginx), iis7_shib.dll (IIS) Act as OpenID Connect 1.0 Provider, gain certification; integrate via integrate via mod_auth_openidc (Apache HTTPd), nginx-openid-connect (Nginx), Microsoft.AspNetCore.Authentication.OpenIdConnect .Net package (IIS) Implement the latest version available of the CAS protocol; integrate via the various CAS clients available: Apache HTTPd, Nginx, Java, .NET, PHP, Perl, Python, Ruby Standard set of authentication modules, and API to extend / create new ones: username / password with different backends back-ends (DBMS, LDAP, ...) TLS client certificate Time-based One-time password SAML 2.0 SP OpenID Connect 1.0 Client Radius U2F WebAuthn ... Authentication chains by combining more authentication modules, similar to Linux's PAM (required, sufficient, requisite, ...) Step-up authentication (e.g. associate level to authentication modules in a chain, and let 3rd party apps require minimum level to access) Multi-factor authentication Authorization Access Policies URL-based grant-based (for JWT) Implement XACML 3.0 Flexible UI for web access dynamically adapting for the configured authentication features (modules, chains, levels, ...) highly customizable, either graphically and processing API gateway for REST APIs authentication and authorization References Projects and products ... Go to page history View page Stop watching space • Manage notifications This message was sent by Atlassian Confluence 6.9.0
[CONF] Apache Syncope > [DISCUSS] Access Management features
Title: Message Title There's 1 new edit on this page [DISCUSS] Access Management features Francesco Chicchiricco edited this page Here's what changed: ... 3rd party apps authentication, SSO and authorization: Act as SAML 2.0 Identity Provider Integrate via mod_shib (Apache HTTPd),nginx-http-shibboleth (Nginx), iis7_shib.dll (IIS) Act as OpenID Connect 1.0 Provider, gain certification integrate via mod_auth_openidc (Apache HTTPd), nginx-openid-connect (Nginx), Microsoft.AspNetCore.Authentication.OpenIdConnect .Net package (IIS) Implement the latest version available of the CAS protocol integrate via the various CAS clients available: Apache HTTPd, Nginx, Java, .NET, PHP, Perl, Python, Ruby Standard set of authentication modules, and API to extend / create new ones: username / password with different backends (DBMS, LDAP, ...) TLS client certificate Time-based One-time password SAML 2.0 SP OpenID Connect 1.0 Client Radius U2F WebAuthn Authentication chains by combining more authentication modules similar to Linux's PAM (required, sufficient, requisite, ...) Step-up authentication Multi-factor authentication ... References Projects and products OpenSSO / OpenAM CAS Apache Fortress Apache CXF Fediz Keycloack ... Topics Enterprise Single SignOn API gateway mobile Physical Access Management / IoT eIDAS ... Go to page history View page Stop watching space • Manage notifications This message was sent by Atlassian Confluence 6.9.0
[CONF] Apache Syncope > [DISCUSS] Access Management features
Title: Message Title There's 1 new edit on this page [DISCUSS] Access Management features Francesco Chicchiricco edited this page Here's what changed: sources: Features 3rd party apps authentication, SSO and authorization: Act as SAML 2.0 Identity Provider Integrate via mod_shib (Apache HTTPd),nginx-http-shibboleth (Nginx), iis7_shib.dll (IIS) Act as OpenID Connect 1.0 Provider, gain certification integrate via mod_auth_openidc (Apache HTTPd), nginx-openid-connect (Nginx), Microsoft.AspNetCore.Authentication.OpenIdConnect .Net package (IIS) Implement the latest version available of the CAS protocol integrate via the various CAS clients available: Apache HTTPd, Nginx, Java, .NET, PHP, Perl, Python, Ruby Standard set of authentication modules, and API to extend / create new ones: username / password with different backends (DBMS, LDAP, ...) TLS client certificate Time-based One-time password SAML 2.0 SP OpenID Connect 1.0 Client Radius U2F WebAuthn Authentication chains by combining more authentication modules similar to Linux's PAM (required, sufficient, requisite, ...) Step-up authentication Multi-factor authentication Reference projects and products OpenSSO / OpenAM CAS Apache Fortress Apache CXF Fediz Keycloack Reference topics ... Enterprise Single SignOn API gateway mobile Physical Access Management / IoT eIDAS ... Go to page history View page Stop watching space • Manage notifications This message was sent by Atlassian Confluence 6.9.0
