SlideShare a Scribd company logo

WSO2Con USA 2015: Implementing SSO Across our Science-as-­a-­Service Web and API Stack at TACC

WSO2
WSO2

The Texas Advanced Computing Center (TACC) is home to some of the most powerful computing resources in the world, including Stampede, ranked 8th fastest supercomputer on the Top500. The TACC Agave API platform provides a set of restful, multi­tenant services for interacting with the supercomputing resources over http including submitting jobs, managing data and much more. Agave has been leveraging WSO2 API Manager in production for over a year now. Recently, the Agave platform has experienced tremendous growth to include large organizations such as the iPlant Collaborative which deploys hundreds of front-end web apps serving more than 20,000 scientists. In partnership with Yenlo and WSO2, TACC is developing a Single Sign­On (SSO) solution based on integrating WSO2 Identity Server with Agave’s current API Manager deployments. In this talk, we review our experiences with API Manager and introduce our SSO solution based on WSO2 Identity Server, including details of our production deployment based on Docker containers, Ansible technology, and more.

Technology
1 of 20
Download to read offline
Implementing Federated Identity Across Our Science-as-a-Service Platform Joe Stubbs, PhD Texas Advanced Computing Center University Of Texas, Austin
What is TACC? “What starts here changes the world” “Powering discoveries that change the world”
Galaxy evolution modeled Now we know why stars form Powering discoveries...
Powering discoveries... Hurricane Prediction Storm surge, flooding, evacuation routes, damage assessment, predicted path, impact areas.
Powering discoveries... Earthquake Prediction Predicting frequency of damaging earthquakes in California for the latest Uniform California Earthquake Rupture Forecast (UCERT3)
Powering discoveries... A Link Between Alzheimer’s and Cancer Computational systems biology approach found a link between Alzheimer’s and GBM, one of the most aggressive forms of brain cancer.
What Does TACC Do? Mission: To enable discoveries that advance science and society through the application of advanced computing technologies. ● High performance computing (HPC) ● Cloud & high throughput computing ● Data intensive computing ● Visualization ● Software development & optimization ● Apps & APIs ● Life sciences ● Training & outreach ● Consulting & professional services
From Command Line to the Web
What Can Agave Do? ● Run application codes your own or community provided codes ● ...on HPC, HTC, and cloud resources your own, shared, or commercial systems ● ...and manage your data reliable, multi-protocol, async data movement ● …in a collaborative way fine grain ACL for working securely with others ● ...from the web webhooks, rest, json, cors, oauth2 ● ...and remember how you did it deep provenance, history, and reproducibility built in
A Platform For Science Portals
A Proliferation of Portals drug discovery portal EARTH CUBE
An Identity Crisis ● Each portal maintains a separate database of users. ● Users have to be vetted manually each time. ● Users have to remember separate credentials. ● No single sign-on. ● No way for share platform assets (apps, jobs, metadata).
One Identity To Rule Them All CAMPUS LOGIN:
TACC Identity Service ● Create central identity service for entire center. ● Core of the service is WSO2 IS. ● Leverage campus identity providers.
Federated Identity Via InCommon Nearly 600 Universities 200 government agencies and partners SAML based trust fabric
Architecture TACC Identity Service (WSO2 IS) InCommon University IDP University IDP University IDP University IDP Discovery Portal Discovery Portal Discovery Portal Tenant APIM Tenant APIM Tenant APIM A A A A A Agave APIsDomain-Specific Applications
Identity Server and APIM ● Internal accounts mapped and managed by IS. ○ Self-service reconciliation, password management. ● SSO across web apps now possible. ● Implicit trust between IS <-> APIM. ● Clients use OAuth2 SAML Bearer Assertion. ○ Exchange SAML assertion for bearer token. ● Still working on the IS <-> InCommon trust.
Status And Timeline ● In production with APIM. ● Working on InCommon membership and IS deployment. ● Goal is to be in prod with first tenant by summer 2016. ● New tenants will be built leveraging the TACC IS. ● Existing tenants will convert over time, if applicable.
WSO2Con USA 2015: Implementing SSO Across our Science-as-­a-­Service Web and API Stack at TACC

Recommended

WSO2Con ASIA 2016: Getting Started with App Cloud and API Cloud for SMEs
WSO2Con ASIA 2016: Getting Started with App Cloud and API Cloud for SMEsWSO2Con ASIA 2016: Getting Started with App Cloud and API Cloud for SMEs
WSO2Con ASIA 2016: Getting Started with App Cloud and API Cloud for SMEsWSO2
 
WSO2Con Asia 2014 - Connected Business and the API Economy: Challenges & Oppo...
WSO2Con Asia 2014 - Connected Business and the API Economy: Challenges & Oppo...WSO2Con Asia 2014 - Connected Business and the API Economy: Challenges & Oppo...
WSO2Con Asia 2014 - Connected Business and the API Economy: Challenges & Oppo...WSO2
 
WSO2Con ASIA 2016: Introduction to the All New WSO2 Governance Center
WSO2Con ASIA 2016: Introduction to the All New WSO2 Governance CenterWSO2Con ASIA 2016: Introduction to the All New WSO2 Governance Center
WSO2Con ASIA 2016: Introduction to the All New WSO2 Governance CenterWSO2
 
WSO2Con EU 2016: Securing APIs: How, What, Why, When
WSO2Con EU 2016: Securing APIs: How, What, Why, WhenWSO2Con EU 2016: Securing APIs: How, What, Why, When
WSO2Con EU 2016: Securing APIs: How, What, Why, WhenWSO2
 
WSO2Con USA 2015: Cross Section of an API Program: The NEXEN API Program at B...
WSO2Con USA 2015: Cross Section of an API Program: The NEXEN API Program at B...WSO2Con USA 2015: Cross Section of an API Program: The NEXEN API Program at B...
WSO2Con USA 2015: Cross Section of an API Program: The NEXEN API Program at B...WSO2
 
WSO2Con USA 2015: Optimizing Service Platforms with SOA Governance
WSO2Con USA 2015: Optimizing Service Platforms with SOA GovernanceWSO2Con USA 2015: Optimizing Service Platforms with SOA Governance
WSO2Con USA 2015: Optimizing Service Platforms with SOA GovernanceWSO2
 
WSO2Con ASIA 2016: Service Governance Meets API Governance: A Case Study
WSO2Con ASIA 2016: Service Governance Meets API Governance: A Case StudyWSO2Con ASIA 2016: Service Governance Meets API Governance: A Case Study
WSO2Con ASIA 2016: Service Governance Meets API Governance: A Case StudyWSO2
 
WSO2Con EU 2016: Understanding the WSO2 API Management Platform
WSO2Con EU 2016: Understanding the WSO2 API Management PlatformWSO2Con EU 2016: Understanding the WSO2 API Management Platform
WSO2Con EU 2016: Understanding the WSO2 API Management PlatformWSO2
 

Recommended

WSO2Con ASIA 2016: Getting Started with App Cloud and API Cloud for SMEs
WSO2Con ASIA 2016: Getting Started with App Cloud and API Cloud for SMEsWSO2Con ASIA 2016: Getting Started with App Cloud and API Cloud for SMEs
WSO2Con ASIA 2016: Getting Started with App Cloud and API Cloud for SMEsWSO2
 
WSO2Con Asia 2014 - Connected Business and the API Economy: Challenges & Oppo...
WSO2Con Asia 2014 - Connected Business and the API Economy: Challenges & Oppo...WSO2Con Asia 2014 - Connected Business and the API Economy: Challenges & Oppo...
WSO2Con Asia 2014 - Connected Business and the API Economy: Challenges & Oppo...WSO2
 
WSO2Con ASIA 2016: Introduction to the All New WSO2 Governance Center
WSO2Con ASIA 2016: Introduction to the All New WSO2 Governance CenterWSO2Con ASIA 2016: Introduction to the All New WSO2 Governance Center
WSO2Con ASIA 2016: Introduction to the All New WSO2 Governance CenterWSO2
 
WSO2Con EU 2016: Securing APIs: How, What, Why, When
WSO2Con EU 2016: Securing APIs: How, What, Why, WhenWSO2Con EU 2016: Securing APIs: How, What, Why, When
WSO2Con EU 2016: Securing APIs: How, What, Why, WhenWSO2
 
WSO2Con USA 2015: Cross Section of an API Program: The NEXEN API Program at B...
WSO2Con USA 2015: Cross Section of an API Program: The NEXEN API Program at B...WSO2Con USA 2015: Cross Section of an API Program: The NEXEN API Program at B...
WSO2Con USA 2015: Cross Section of an API Program: The NEXEN API Program at B...WSO2
 
WSO2Con USA 2015: Optimizing Service Platforms with SOA Governance
WSO2Con USA 2015: Optimizing Service Platforms with SOA GovernanceWSO2Con USA 2015: Optimizing Service Platforms with SOA Governance
WSO2Con USA 2015: Optimizing Service Platforms with SOA GovernanceWSO2
 
WSO2Con ASIA 2016: Service Governance Meets API Governance: A Case Study
WSO2Con ASIA 2016: Service Governance Meets API Governance: A Case StudyWSO2Con ASIA 2016: Service Governance Meets API Governance: A Case Study
WSO2Con ASIA 2016: Service Governance Meets API Governance: A Case StudyWSO2
 
WSO2Con EU 2016: Understanding the WSO2 API Management Platform
WSO2Con EU 2016: Understanding the WSO2 API Management PlatformWSO2Con EU 2016: Understanding the WSO2 API Management Platform
WSO2Con EU 2016: Understanding the WSO2 API Management PlatformWSO2
 
Identity Management for Virtual Organizations: A Model
Identity Management for Virtual Organizations: A ModelIdentity Management for Virtual Organizations: A Model
Identity Management for Virtual Organizations: A ModelVon Welch
 
reStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdf
reStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdfreStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdf
reStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdfKen Fuller
 
Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...
Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...
Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...WSO2
 
Science Gateway Canvas
Science Gateway CanvasScience Gateway Canvas
Science Gateway CanvasShayan Shahand
 
3. the grid new infrastructure
3. the grid new infrastructure3. the grid new infrastructure
3. the grid new infrastructureDr Sandeep Kumar Poonia
 
Sinnott Paper
Sinnott PaperSinnott Paper
Sinnott PaperJohanna Green
 
MDM-2013, Milan, Italy, 6 June, 2013
MDM-2013, Milan, Italy, 6 June, 2013MDM-2013, Milan, Italy, 6 June, 2013
MDM-2013, Milan, Italy, 6 June, 2013Charith Perera
 
Building a Robotics Hub in San Diego
Building a Robotics Hub in San DiegoBuilding a Robotics Hub in San Diego
Building a Robotics Hub in San DiegoMecklerMedia
 
Knoesis Student Achievement
Knoesis Student AchievementKnoesis Student Achievement
Knoesis Student AchievementArtificial Intelligence Institute at UofSC
 
Cloud computing & big data for service innovation & learning
Cloud computing & big data for service innovation & learningCloud computing & big data for service innovation & learning
Cloud computing & big data for service innovation & learning2016
 
Tech Jam 2015: Action Cluster Highlights
Tech Jam 2015: Action Cluster HighlightsTech Jam 2015: Action Cluster Highlights
Tech Jam 2015: Action Cluster HighlightsUS-Ignite
 
Trustworthy Computational Science: A Multi-decade Perspective
Trustworthy Computational Science: A Multi-decade PerspectiveTrustworthy Computational Science: A Multi-decade Perspective
Trustworthy Computational Science: A Multi-decade PerspectiveVon Welch
 
Accure ai healthcare offering v4
Accure ai healthcare offering v4Accure ai healthcare offering v4
Accure ai healthcare offering v4Accureinc
 
Robotics opportunities v6
Robotics opportunities v6Robotics opportunities v6
Robotics opportunities v6Elliot Duff
 
Welch owasp-feb-2015
Welch owasp-feb-2015Welch owasp-feb-2015
Welch owasp-feb-2015Von Welch
 
Colombia 20140326 v1
Colombia 20140326 v1Colombia 20140326 v1
Colombia 20140326 v1ISSIP
 
Sgci esip-7-20-18
Sgci esip-7-20-18Sgci esip-7-20-18
Sgci esip-7-20-18Nancy Wilkins-Diehr
 
Challenges and Opportunities of the IoT Data and Service Interoperability
Challenges and Opportunities of the IoT Data and Service InteroperabilityChallenges and Opportunities of the IoT Data and Service Interoperability
Challenges and Opportunities of the IoT Data and Service InteroperabilitySensorUp
 
Nectar cloud workshop ndj 20110331.2
Nectar cloud workshop ndj 20110331.2Nectar cloud workshop ndj 20110331.2
Nectar cloud workshop ndj 20110331.2Nick Jones
 
Sensing-as-a-Service - An IoT Service Provider's Perspectives
Sensing-as-a-Service - An IoT Service Provider's PerspectivesSensing-as-a-Service - An IoT Service Provider's Perspectives
Sensing-as-a-Service - An IoT Service Provider's PerspectivesDr. Mazlan Abbas
 
Accelerating Enterprise Software Engineering with Platformless
Accelerating Enterprise Software Engineering with PlatformlessAccelerating Enterprise Software Engineering with Platformless
Accelerating Enterprise Software Engineering with PlatformlessWSO2
 
How to Create a Service in Choreo
How to Create a Service in ChoreoHow to Create a Service in Choreo
How to Create a Service in ChoreoWSO2
 

More Related Content

Similar to WSO2Con USA 2015: Implementing SSO Across our Science-as-­a-­Service Web and API Stack at TACC

Identity Management for Virtual Organizations: A Model
Identity Management for Virtual Organizations: A ModelIdentity Management for Virtual Organizations: A Model
Identity Management for Virtual Organizations: A ModelVon Welch
 
reStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdf
reStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdfreStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdf
reStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdfKen Fuller
 
Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...
Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...
Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...WSO2
 
Science Gateway Canvas
Science Gateway CanvasScience Gateway Canvas
Science Gateway CanvasShayan Shahand
 
MDM-2013, Milan, Italy, 6 June, 2013
MDM-2013, Milan, Italy, 6 June, 2013MDM-2013, Milan, Italy, 6 June, 2013
MDM-2013, Milan, Italy, 6 June, 2013Charith Perera
 
Building a Robotics Hub in San Diego
Building a Robotics Hub in San DiegoBuilding a Robotics Hub in San Diego
Building a Robotics Hub in San DiegoMecklerMedia
 
Cloud computing & big data for service innovation & learning
Cloud computing & big data for service innovation & learningCloud computing & big data for service innovation & learning
Cloud computing & big data for service innovation & learning2016
 
Tech Jam 2015: Action Cluster Highlights
Tech Jam 2015: Action Cluster HighlightsTech Jam 2015: Action Cluster Highlights
Tech Jam 2015: Action Cluster HighlightsUS-Ignite
 
Trustworthy Computational Science: A Multi-decade Perspective
Trustworthy Computational Science: A Multi-decade PerspectiveTrustworthy Computational Science: A Multi-decade Perspective
Trustworthy Computational Science: A Multi-decade PerspectiveVon Welch
 
Accure ai healthcare offering v4
Accure ai healthcare offering v4Accure ai healthcare offering v4
Accure ai healthcare offering v4Accureinc
 
Robotics opportunities v6
Robotics opportunities v6Robotics opportunities v6
Robotics opportunities v6Elliot Duff
 
Welch owasp-feb-2015
Welch owasp-feb-2015Welch owasp-feb-2015
Welch owasp-feb-2015Von Welch
 
Colombia 20140326 v1
Colombia 20140326 v1Colombia 20140326 v1
Colombia 20140326 v1ISSIP
 
Challenges and Opportunities of the IoT Data and Service Interoperability
Challenges and Opportunities of the IoT Data and Service InteroperabilityChallenges and Opportunities of the IoT Data and Service Interoperability
Challenges and Opportunities of the IoT Data and Service InteroperabilitySensorUp
 
Nectar cloud workshop ndj 20110331.2
Nectar cloud workshop ndj 20110331.2Nectar cloud workshop ndj 20110331.2
Nectar cloud workshop ndj 20110331.2Nick Jones
 
Sensing-as-a-Service - An IoT Service Provider's Perspectives
Sensing-as-a-Service - An IoT Service Provider's PerspectivesSensing-as-a-Service - An IoT Service Provider's Perspectives
Sensing-as-a-Service - An IoT Service Provider's PerspectivesDr. Mazlan Abbas
 

Similar to WSO2Con USA 2015: Implementing SSO Across our Science-as-­a-­Service Web and API Stack at TACC (20)

Identity Management for Virtual Organizations: A Model
Identity Management for Virtual Organizations: A ModelIdentity Management for Virtual Organizations: A Model
Identity Management for Virtual Organizations: A Model
 
reStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdf
reStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdfreStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdf
reStartEvents 5:25 Nationwide All-Clearances Employer Directory.pdf
 
Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...
Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...
Introduction to Big Data Analytics: Batch, Real-Time, and the Best of Both Wo...
 
Science Gateway Canvas
Science Gateway CanvasScience Gateway Canvas
Science Gateway Canvas
 
3. the grid new infrastructure
3. the grid new infrastructure3. the grid new infrastructure
3. the grid new infrastructure
 
Sinnott Paper
Sinnott PaperSinnott Paper
Sinnott Paper
 
MDM-2013, Milan, Italy, 6 June, 2013
MDM-2013, Milan, Italy, 6 June, 2013MDM-2013, Milan, Italy, 6 June, 2013
MDM-2013, Milan, Italy, 6 June, 2013
 
Building a Robotics Hub in San Diego
Building a Robotics Hub in San DiegoBuilding a Robotics Hub in San Diego
Building a Robotics Hub in San Diego
 
Knoesis Student Achievement
Knoesis Student AchievementKnoesis Student Achievement
Knoesis Student Achievement
 
Cloud computing & big data for service innovation & learning
Cloud computing & big data for service innovation & learningCloud computing & big data for service innovation & learning
Cloud computing & big data for service innovation & learning
 
Tech Jam 2015: Action Cluster Highlights
Tech Jam 2015: Action Cluster HighlightsTech Jam 2015: Action Cluster Highlights
Tech Jam 2015: Action Cluster Highlights
 
Trustworthy Computational Science: A Multi-decade Perspective
Trustworthy Computational Science: A Multi-decade PerspectiveTrustworthy Computational Science: A Multi-decade Perspective
Trustworthy Computational Science: A Multi-decade Perspective
 
Accure ai healthcare offering v4
Accure ai healthcare offering v4Accure ai healthcare offering v4
Accure ai healthcare offering v4
 
Robotics opportunities v6
Robotics opportunities v6Robotics opportunities v6
Robotics opportunities v6
 
Welch owasp-feb-2015
Welch owasp-feb-2015Welch owasp-feb-2015
Welch owasp-feb-2015
 
Colombia 20140326 v1
Colombia 20140326 v1Colombia 20140326 v1
Colombia 20140326 v1
 
Sgci esip-7-20-18
Sgci esip-7-20-18Sgci esip-7-20-18
Sgci esip-7-20-18
 
Challenges and Opportunities of the IoT Data and Service Interoperability
Challenges and Opportunities of the IoT Data and Service InteroperabilityChallenges and Opportunities of the IoT Data and Service Interoperability
Challenges and Opportunities of the IoT Data and Service Interoperability
 
Nectar cloud workshop ndj 20110331.2
Nectar cloud workshop ndj 20110331.2Nectar cloud workshop ndj 20110331.2
Nectar cloud workshop ndj 20110331.2
 
Sensing-as-a-Service - An IoT Service Provider's Perspectives
Sensing-as-a-Service - An IoT Service Provider's PerspectivesSensing-as-a-Service - An IoT Service Provider's Perspectives
Sensing-as-a-Service - An IoT Service Provider's Perspectives
 

More from WSO2

Accelerating Enterprise Software Engineering with Platformless
Accelerating Enterprise Software Engineering with PlatformlessAccelerating Enterprise Software Engineering with Platformless
Accelerating Enterprise Software Engineering with PlatformlessWSO2
 
How to Create a Service in Choreo
How to Create a Service in ChoreoHow to Create a Service in Choreo
How to Create a Service in ChoreoWSO2
 
Ballerina Tech Talk - May 2023
Ballerina Tech Talk - May 2023Ballerina Tech Talk - May 2023
Ballerina Tech Talk - May 2023WSO2
 
Platform Strategy to Deliver Digital Experiences on Azure
Platform Strategy to Deliver Digital Experiences on AzurePlatform Strategy to Deliver Digital Experiences on Azure
Platform Strategy to Deliver Digital Experiences on AzureWSO2
 
GartnerITSymSessionSlides.pdf
GartnerITSymSessionSlides.pdfGartnerITSymSessionSlides.pdf
GartnerITSymSessionSlides.pdfWSO2
 
[Webinar] How to Create an API in Minutes
[Webinar] How to Create an API in Minutes[Webinar] How to Create an API in Minutes
[Webinar] How to Create an API in MinutesWSO2
 
Modernizing the Student Journey with Ethos Identity
Modernizing the Student Journey with Ethos IdentityModernizing the Student Journey with Ethos Identity
Modernizing the Student Journey with Ethos IdentityWSO2
 
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...WSO2
 
CIO Summit Berlin 2022.pptx.pdf
CIO Summit Berlin 2022.pptx.pdfCIO Summit Berlin 2022.pptx.pdf
CIO Summit Berlin 2022.pptx.pdfWSO2
 
Delivering New Digital Experiences Fast - Introducing Choreo
Delivering New Digital Experiences Fast - Introducing ChoreoDelivering New Digital Experiences Fast - Introducing Choreo
Delivering New Digital Experiences Fast - Introducing ChoreoWSO2
 
Fueling the Digital Experience Economy with Connected Products
Fueling the Digital Experience Economy with Connected ProductsFueling the Digital Experience Economy with Connected Products
Fueling the Digital Experience Economy with Connected ProductsWSO2
 
A Reference Methodology for Agile Digital Businesses
A Reference Methodology for Agile Digital Businesses A Reference Methodology for Agile Digital Businesses
A Reference Methodology for Agile Digital BusinessesWSO2
 
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)WSO2
 
Lessons from the pandemic - From a single use case to true transformation
Lessons from the pandemic - From a single use case to true transformation Lessons from the pandemic - From a single use case to true transformation
Lessons from the pandemic - From a single use case to true transformationWSO2
 
Adding Liveliness to Banking Experiences
Adding Liveliness to Banking ExperiencesAdding Liveliness to Banking Experiences
Adding Liveliness to Banking ExperiencesWSO2
 
Building a Future-ready Bank
Building a Future-ready BankBuilding a Future-ready Bank
Building a Future-ready BankWSO2
 
WSO2 API Manager Community Call - November 2021
WSO2 API Manager Community Call - November 2021WSO2 API Manager Community Call - November 2021
WSO2 API Manager Community Call - November 2021WSO2
 
[API World ] - Managing Asynchronous APIs
[API World ] - Managing Asynchronous APIs[API World ] - Managing Asynchronous APIs
[API World ] - Managing Asynchronous APIsWSO2
 
[API World 2021 ] - Understanding Cloud Native Deployment
[API World 2021 ] - Understanding Cloud Native Deployment[API World 2021 ] - Understanding Cloud Native Deployment
[API World 2021 ] - Understanding Cloud Native DeploymentWSO2
 
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”[API Word 2021] - Quantum Duality of “API as a Business and a Technology”
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”WSO2
 

More from WSO2 (20)

Accelerating Enterprise Software Engineering with Platformless
Accelerating Enterprise Software Engineering with PlatformlessAccelerating Enterprise Software Engineering with Platformless
Accelerating Enterprise Software Engineering with Platformless
 
How to Create a Service in Choreo
How to Create a Service in ChoreoHow to Create a Service in Choreo
How to Create a Service in Choreo
 
Ballerina Tech Talk - May 2023
Ballerina Tech Talk - May 2023Ballerina Tech Talk - May 2023
Ballerina Tech Talk - May 2023
 
Platform Strategy to Deliver Digital Experiences on Azure
Platform Strategy to Deliver Digital Experiences on AzurePlatform Strategy to Deliver Digital Experiences on Azure
Platform Strategy to Deliver Digital Experiences on Azure
 
GartnerITSymSessionSlides.pdf
GartnerITSymSessionSlides.pdfGartnerITSymSessionSlides.pdf
GartnerITSymSessionSlides.pdf
 
[Webinar] How to Create an API in Minutes
[Webinar] How to Create an API in Minutes[Webinar] How to Create an API in Minutes
[Webinar] How to Create an API in Minutes
 
Modernizing the Student Journey with Ethos Identity
Modernizing the Student Journey with Ethos IdentityModernizing the Student Journey with Ethos Identity
Modernizing the Student Journey with Ethos Identity
 
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...
 
CIO Summit Berlin 2022.pptx.pdf
CIO Summit Berlin 2022.pptx.pdfCIO Summit Berlin 2022.pptx.pdf
CIO Summit Berlin 2022.pptx.pdf
 
Delivering New Digital Experiences Fast - Introducing Choreo
Delivering New Digital Experiences Fast - Introducing ChoreoDelivering New Digital Experiences Fast - Introducing Choreo
Delivering New Digital Experiences Fast - Introducing Choreo
 
Fueling the Digital Experience Economy with Connected Products
Fueling the Digital Experience Economy with Connected ProductsFueling the Digital Experience Economy with Connected Products
Fueling the Digital Experience Economy with Connected Products
 
A Reference Methodology for Agile Digital Businesses
A Reference Methodology for Agile Digital Businesses A Reference Methodology for Agile Digital Businesses
A Reference Methodology for Agile Digital Businesses
 
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)
 
Lessons from the pandemic - From a single use case to true transformation
Lessons from the pandemic - From a single use case to true transformation Lessons from the pandemic - From a single use case to true transformation
Lessons from the pandemic - From a single use case to true transformation
 
Adding Liveliness to Banking Experiences
Adding Liveliness to Banking ExperiencesAdding Liveliness to Banking Experiences
Adding Liveliness to Banking Experiences
 
Building a Future-ready Bank
Building a Future-ready BankBuilding a Future-ready Bank
Building a Future-ready Bank
 
WSO2 API Manager Community Call - November 2021
WSO2 API Manager Community Call - November 2021WSO2 API Manager Community Call - November 2021
WSO2 API Manager Community Call - November 2021
 
[API World ] - Managing Asynchronous APIs
[API World ] - Managing Asynchronous APIs[API World ] - Managing Asynchronous APIs
[API World ] - Managing Asynchronous APIs
 
[API World 2021 ] - Understanding Cloud Native Deployment
[API World 2021 ] - Understanding Cloud Native Deployment[API World 2021 ] - Understanding Cloud Native Deployment
[API World 2021 ] - Understanding Cloud Native Deployment
 
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”[API Word 2021] - Quantum Duality of “API as a Business and a Technology”
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”
 

Recently uploaded

Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsJoaquim Jorge
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 

Recently uploaded (20)

Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 

WSO2Con USA 2015: Implementing SSO Across our Science-as-­a-­Service Web and API Stack at TACC

  • 1. Implementing Federated Identity Across Our Science-as-a-Service Platform Joe Stubbs, PhD Texas Advanced Computing Center University Of Texas, Austin
  • 2. What is TACC? “What starts here changes the world” “Powering discoveries that change the world”
  • 3. Galaxy evolution modeled Now we know why stars form Powering discoveries...
  • 4. Powering discoveries... Hurricane Prediction Storm surge, flooding, evacuation routes, damage assessment, predicted path, impact areas.
  • 5. Powering discoveries... Earthquake Prediction Predicting frequency of damaging earthquakes in California for the latest Uniform California Earthquake Rupture Forecast (UCERT3)
  • 6. Powering discoveries... A Link Between Alzheimer’s and Cancer Computational systems biology approach found a link between Alzheimer’s and GBM, one of the most aggressive forms of brain cancer.
  • 7. What Does TACC Do? Mission: To enable discoveries that advance science and society through the application of advanced computing technologies. ● High performance computing (HPC) ● Cloud & high throughput computing ● Data intensive computing ● Visualization ● Software development & optimization ● Apps & APIs ● Life sciences ● Training & outreach ● Consulting & professional services
  • 8. From Command Line to the Web
  • 9.
  • 10. What Can Agave Do? ● Run application codes your own or community provided codes ● ...on HPC, HTC, and cloud resources your own, shared, or commercial systems ● ...and manage your data reliable, multi-protocol, async data movement ● …in a collaborative way fine grain ACL for working securely with others ● ...from the web webhooks, rest, json, cors, oauth2 ● ...and remember how you did it deep provenance, history, and reproducibility built in
  • 11. A Platform For Science Portals
  • 12. A Proliferation of Portals drug discovery portal EARTH CUBE
  • 13. An Identity Crisis ● Each portal maintains a separate database of users. ● Users have to be vetted manually each time. ● Users have to remember separate credentials. ● No single sign-on. ● No way for share platform assets (apps, jobs, metadata).
  • 14. One Identity To Rule Them All CAMPUS LOGIN:
  • 15. TACC Identity Service ● Create central identity service for entire center. ● Core of the service is WSO2 IS. ● Leverage campus identity providers.
  • 16. Federated Identity Via InCommon Nearly 600 Universities 200 government agencies and partners SAML based trust fabric
  • 17. Architecture TACC Identity Service (WSO2 IS) InCommon University IDP University IDP University IDP University IDP Discovery Portal Discovery Portal Discovery Portal Tenant APIM Tenant APIM Tenant APIM A A A A A Agave APIsDomain-Specific Applications
  • 18. Identity Server and APIM ● Internal accounts mapped and managed by IS. ○ Self-service reconciliation, password management. ● SSO across web apps now possible. ● Implicit trust between IS <-> APIM. ● Clients use OAuth2 SAML Bearer Assertion. ○ Exchange SAML assertion for bearer token. ● Still working on the IS <-> InCommon trust.
  • 19. Status And Timeline ● In production with APIM. ● Working on InCommon membership and IS deployment. ● Goal is to be in prod with first tenant by summer 2016. ● New tenants will be built leveraging the TACC IS. ● Existing tenants will convert over time, if applicable.