October 18, 2007

From OpenLiberty.org Wiki

Jump to: navigation, search

Curtis, Asa, Brett, Scott

Where we are with the code

Although we have made significant progress, we cannot make the Alpha announcement yet. We are successfully interacting with Conor Cahill's WSF server. This includes authentication through discovery. Although Conor has built out an advanced client media services service - which we hope to communicate with at some point, we decided to shift our energy to bootstrapping into HP Select Federation. We have now spent a good deal of time attempting this, and the best we can report is receiving a valid failure from HP's DS.

  • xmltooling base classes continue to grow, including modeling of epr, ps objects, disco, soap bindings, sasl request/response,
  • implemented basic AS Client, doing PLAIN authentication and retrieving a DS epr
  • implemented basic DS Client, capable of making queries and processing the response (empty, specifying service(s), specifying secmech, specifying provider id)
  • stubbed a PS Client, including the test cases, in the process of creating all of the xmltooling classes


Bootstrapping with HP

Thanks to a good deal of support from the HP team we are making progress on this front. Not as much as we hoped, however, which is the primary reason for delaying the alpha announcement. The installation on the Solaris server that Derrick Harcey has provided has been successfully completed, with proper certificates in place. An IdP and SP have been configured. A demo app is accessible. DS and PS should be available.

So far we have been able to extract a DS bootstrap EPR from the result of an SSO. However, this EPR is giving us a security fault when we use it. It unmarshalls into the OpenSAML xmltooling objects properly using the classes that we have defined to model the EPR.

Our next step will be to create an SP(mini) with the sole purpose of federating with the HP IdP and then executing a SOAP SSO, thereby providing the ClientLib with an EPR. We expect that we will experience the same problem that we are experiencing now, but believe that this exercise will provide us with a mechanism that we can use more easily than the extraction noted above while trouble shooting with HP.

Once we have successfully made a DS request, we should be able to start testing our PS code with HP's implementation.


People Service

We feel that the people service is a great first service. It is relatively self contained, and supported by HP. We also feel that it will provide the ID-WSF base for an interesting sample application. There was some discussion on whether or not this could dovetail nicely with other cutting edge Liberty Service implementations (possibly Conor's media service).

Retrieved from "http://www.openliberty.org/wiki/index.php/October_18%2C_2007"
Personal tools