> On Jun 1, 2015, at 8:22 AM, Kiran Ayyagari <[email protected]> wrote: > > On Mon, Jun 1, 2015 at 9:08 PM, Shawn McKinney <[email protected]> wrote: > >> Hello, >> >> This posting is to inform the community of the status of the fortress >> product and give hints as to future direction. >> >> Current Status of Fortress product: >> 1. Fortress fully implements ANSI RBAC (INCITS 359). >> 2. Fortress provides an SDK, Web UI, Restful component and Tomcat security >> plug-ins >> >> Next steps: >> 1. Add support for RFC2307bis which provides UNIX security capabilities >> (core, rest, web) >> 2. Add support for SSO (new component) >> > as a guy who implemented a SAML based SSO product this step is particularly > interesting to me. > Is there a high level overview on what we are aiming for? > (and personally, I prefer this to be written based on OpenId Connect and > JWT)
My vote is to support both SAML 2.0 and OpenID Connect as they both are useful but have slightly different use cases. One is more widely used within the enterprise and the other out on the Internet. Sounds like you are throwing your hat in the ring to help out? :-) Shawn [email protected]
