On Mon, Jun 1, 2015 at 10:06 PM, Shawn McKinney <[email protected]> wrote:
> > > On Jun 1, 2015, at 8:22 AM, Kiran Ayyagari <[email protected]> wrote: > > > > On Mon, Jun 1, 2015 at 9:08 PM, Shawn McKinney <[email protected]> > wrote: > > > >> Hello, > >> > >> This posting is to inform the community of the status of the fortress > >> product and give hints as to future direction. > >> > >> Current Status of Fortress product: > >> 1. Fortress fully implements ANSI RBAC (INCITS 359). > >> 2. Fortress provides an SDK, Web UI, Restful component and Tomcat > security > >> plug-ins > >> > >> Next steps: > >> 1. Add support for RFC2307bis which provides UNIX security capabilities > >> (core, rest, web) > >> 2. Add support for SSO (new component) > >> > > as a guy who implemented a SAML based SSO product this step is > particularly > > interesting to me. > > Is there a high level overview on what we are aiming for? > > (and personally, I prefer this to be written based on OpenId Connect and > > JWT) > > My vote is to support both SAML 2.0 and OpenID Connect as they both are > useful but have slightly different use cases. One is more widely used > within the enterprise and the other out on the Internet. Sounds like you > are throwing your hat in the ring to help out? :-) > > yep :) > Shawn > [email protected] > -- Kiran Ayyagari http://keydap.com
