Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.



Published on

Published in: Technology, Business
  • Be the first to comment

  • Be the first to like this


  1. 1. DiscoJuiceIdentity FederationsOctober 20th, Vienna
  2. 2. DiscoJuice✤ Improved User Interface for IdP Discovery.✤ Written in javascript.✤ Has a bunch of APIs to be flexible in various architectures and deployments.✤ Can be embedded or stand-alone, and central or de-centralized; or a combined mix.
  3. 3. DiscoJuice✤ First take; somewhat complex to deal with all the deployment options.✤ Second take will then be to offer a centrally hosted DiscoJuice, embedded on service.
  4. 4. Additional new features✤ Can obtain metadata from multiple feeds in parallel✤ Can support caching of metadata feeds✤ Wait for all feeds to complete before showing list, to avoid flickering.
  5. 5. Flattening cross-federations✤ Hub and spoke federations a challenge to Discovery✤ DiscoJuice attempts to flatten the user experience, and include all nested institutions in the user interface. No more multi-page discovery.✤
  6. 6. Features of hosted DiscoJuice✤ Cross-service Memory✤ Cached metadata and JS across services✤ Prepared metadata feed from popular federations✤ Implementations of APIs to lookup geo-locations etc.✤ Parsing and conversion of SAML 2.0 metadata to JSON
  7. 7. Challenges of centrallized DJ✤ Needs to be very reliable - not more than todays centrallized discovery services though.✤ Investigate in CDN technology✤ Who should host it? GÉANT, UNINETT or ?✤
  8. 8.✤ Prepared, minified versions offered with gzip.✤ Different versions available. Automatic upgrades possible!✤ Parsing and conversion of SAML 2.0 metadata to JSON ✤ Prepared JSON metadata from a bunch of federations ✤ Resizing and caching all MDUI logos.✤ Implementation of ip to geo-location API
  9. 9.
  10. 10. Simple install✤ To install, copy and paste: <!-- JQuery hosted by Google --> <script src="//" type="text/javascript"></script> <!-- DiscoJuice hosted by UNINETT at --> <script type="text/javascript" src=""></script> <link rel="stylesheet" type="text/css" href="" /> <script type="text/javascript"> DiscoJuice.Hosted.setup( "a.signon", "Example Showcase service", "", "", ["edugain", "kalmar", "feide"], "" ); </script>✤ Edit the red options for your deployment.
  11. 11. DiscoJuice & eduGAIN✤ Demo URL:✤ Metadata feed for eduGAIN metadata.✤ Geo location APIs✤
  12. 12. Discovery Architecture✤ Who should aid Service Providers in improving the discovery experience?✤ Discovery Service in eduGAIN?✤ How to customize the feed of relevant Identity Providers for a SP?