Prabath Siriwardena's work on SCIM and provisioning standards
•
2 likes•1,108 views
Open Standard Based identity Provisioning System for Cloud @ Identity.Next 2012 - Netherlands.
Recommended
Recommended
More Related Content
What's hot
What's hot (18)
Viewers also liked
Viewers also liked (11)
Similar to Prabath Siriwardena's work on SCIM and provisioning standards
Similar to Prabath Siriwardena's work on SCIM and provisioning standards (19)
More from Prabath Siriwardena
More from Prabath Siriwardena (20)
Recently uploaded
Recently uploaded (20)
Prabath Siriwardena's work on SCIM and provisioning standards
- 1. Prabath Siriwardena (@prabath) Senior Software Architect
- 9. 2012 : SCIM 1.1 2011 : SCIM 1.0 2011 : RESTPML 2010 : SCIM community 2006 : SPML 2.0 2003 : SPML 1.0 2003 : WS-‐Provisioning 2001 : OASIS PS TC
- 11. /Users SCIM Service Provider SCIM Consumer /Groups
- 12. add-‐user.json { "schemas":[], "name":{"familyName":”siriwardena","givenName":”prabath"}, "userName":”prabath","password":”prabath123", "emails":[{"primary":true,"value":”prabath@yahoo.com","type":"home"}, {"value":”prabath@wso2.com","type":"work"}] } curl command curl -‐v -‐k -‐-‐user admin:admin -‐d @add-‐user.json -‐-‐header "Content-‐Type:application/json" https://localhost:9443/wso2/scim/Users
- 13. add-‐group.json { "schemas": ["urn:scim:schemas:core:1.0"], "id": "idnext", "displayName": "IdentityNext", } curl command curl -‐v -‐k -‐-‐user admin:admin -‐d @add-‐group.json -‐-‐header "Content-‐Type:application/ json" https://localhost:9443/wso2/scim/Groups
- 15. Domain A Provisioning Service Provisioning Provider Service Provider Domain B Provisioning Service SCIM Consumer Provider Domain C One way provisioning
- 16. Domain A Provisioning Service Provisioning Provider Service Provider Domain B Provisioning SCIM Consumer Service Provider Domain C One way provisioning with broker mode
- 17. Domain A Provisioning SCIM Consumer Service Provisioning Provider Service Provider Domain B Provisioning SCIM Consumer Service Provider Domain C SCIM Consumer Bi-‐directional provisioning
- 18. Domain A Provisioning SCIM Consumer Service Provisioning Provider Service Provider Provisioning Service Provider Domain B Provisioning SCIM Consumer Service Provider Domain C SCIM Consumer Multi-‐directional provisioning with a centralized PSP
- 19. Domain A Provisioning 3 SAML2 IdP Service Provider 2 4 1 Domain B Just-‐in-‐time provisioning with SAML2
- 20. Domain A 4 Provisioning 3 SAML2 IdP Service Provider 2 5 1 Domain B Just-‐in-‐time provisioning with SAML2
- 21. Provisioning Service Provider facilelogin.com wso2.com SCIM Consumer (wso2.com) SCIM Consumer (facilelogin.com)
- 22. OAuth 2.0 Authorization Server Bearer Token Provisioning Service Provider SCIM Consumer
- 23. OAuth 2.0 Authorization Server Validate() Bearer Token Provisioning Service Provider SCIM Consumer
- 24. Resource Action Resource Owner Client Scope Provisioning Service Provider SCIM Consumer
- 25. OAuth 2.0 Authorization Server Validate() XACML Request Permit/ Provisioning Deny/… Service Provider SCIM Consumer XACML PDP