0
Generic presentation                               Updated: November 2009simpleSAMLphpAndreas Åkre Solberg  andreas.solber...
What is it?Software with focus on SAML (both SP and IdP),but with support for multiple protocols.
Widespread• Wide adoption, and interest is increasing…• Mostly Europe and US.Both commercial / educational.• 350 users on ...
Project structure          Project leader        1          Main developers       2         Secondary commiters   ~5      ...
Why people like it • easy to install and maintain   just drop a folder to install :)                  • aut • easy to exte...
Version 1.5 (October 2009)with improved interoperability with Shibboleth     • automated shibboleth-style         metadata...
Multiple protocols• SAML 2.X SP• SAML 2.X IdP• Shib 1.3 SP• Shib 1.3 IdP• OpenID Provider• OpenID Consumer• OAuth• WS-Fed ...
Protocols can be bridged!        le I      mpExa                                      SAML 2.0                            ...
Protocols can be bridged!        le II      mpExa SAML 2.0                              SAML 1.1   SP                     ...
Scalable from simple        Apache 2 + PHP 5          simpleSAMLphp
Load balanced   Load balanced   Load balancedto not so           Fail                    over                             ...
PerformanceLast performance test on IdP:~ 12.000 SAML logins per minute on one server instancePossible because of the ligh...
"Self-check" API• Santity-check API allows you to check ifeverything is "OK".• Can be connected to monitoring systems like...
Statistics module
User consent
Fancy Robust Single Log-Out
IdP Discovery Service                • Tabbed interface                • Drop-down free                • Incremental live ...
Timed-out HTTP-POST Rescue                              SimpleSAMLphp                             rescues the users       ...
Easy log lookupwith TrackID
more... http://rnd.feide.no/simplesamlphp
Upcoming SlideShare
Loading in...5
×

About SimpleSAMLphp 2009

1,400

Published on

A generic presentation of SimpleSAMLphp. Made in 2009.

Published in: Technology
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
1,400
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
15
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Transcript of "About SimpleSAMLphp 2009"

  1. 1. Generic presentation Updated: November 2009simpleSAMLphpAndreas Åkre Solberg andreas.solberg@uninett.no
  2. 2. What is it?Software with focus on SAML (both SP and IdP),but with support for multiple protocols.
  3. 3. Widespread• Wide adoption, and interest is increasing…• Mostly Europe and US.Both commercial / educational.• 350 users on mailing-list.• Translated into 20 languages• IDDY-award in California 2008. Visitors of project homepage demography ›
  4. 4. Project structure Project leader 1 Main developers 2 Secondary commiters ~5 Contributors ~ 15
  5. 5. Why people like it • easy to install and maintain just drop a folder to install :) • aut • easy to extend hent • pro ication s cess o ing fi urces • fully modularized • the lt mes ers • hoo ks • very helpful open source community.
  6. 6. Version 1.5 (October 2009)with improved interoperability with Shibboleth • automated shibboleth-style metadata consumption • Improved experience with combined SAML 1.1 and SAML 2.0 envir. • Improved SAML 1.1 + 2.0 integrated IdP Discovery Service. • SAML 1.1 Artifact binding • encrypted NameIDs
  7. 7. Multiple protocols• SAML 2.X SP• SAML 2.X IdP• Shib 1.3 SP• Shib 1.3 IdP• OpenID Provider• OpenID Consumer• OAuth• WS-Fed / ADFS •!Radius client• Infocard •!LDAP • Twitter auth• CAS • SQL • Facebook auth •!YubiKey *) some protocols experimental support
  8. 8. Protocols can be bridged! le I mpExa SAML 2.0 IdP SimpleSAMLphp bridge acting as OpenID Provider and SAML 2.0 SP
  9. 9. Protocols can be bridged! le II mpExa SAML 2.0 SAML 1.1 SP IdP SimpleSAMLphp bridge acting as SAML 2.0 IdP and SAML 1.1 SP
  10. 10. Scalable from simple Apache 2 + PHP 5 simpleSAMLphp
  11. 11. Load balanced Load balanced Load balancedto not so Fail over memcac he 1C memcac he 2C memcac he 3Csimple Fail over memcac he 1B memcac he 2B memcac he 3Bwith the memcache Fail over memcac he memcac he memcac hesessionhandler 1A 2A 3A Apache 2 Apache 2 Apache 2 Apache 2 PHP 5 PHP 5 PHP 5 PHP 5 simpleSAML simpleSAML simpleSAML simpleSAML php php php php Load balan cer
  12. 12. PerformanceLast performance test on IdP:~ 12.000 SAML logins per minute on one server instancePossible because of the lightweight design from the group up.
  13. 13. "Self-check" API• Santity-check API allows you to check ifeverything is "OK".• Can be connected to monitoring systems likeNAGIOS.• Hooks for adding sanity check tests in externalmodules.
  14. 14. Statistics module
  15. 15. User consent
  16. 16. Fancy Robust Single Log-Out
  17. 17. IdP Discovery Service • Tabbed interface • Drop-down free • Incremental live search
  18. 18. Timed-out HTTP-POST Rescue SimpleSAMLphp rescues the users data when session is timed out . The wiki AFAIK No other use-case software does.What will happen ifsave and you the sessio timed out n is ?
  19. 19. Easy log lookupwith TrackID
  20. 20. more... http://rnd.feide.no/simplesamlphp
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×