SlideShare a Scribd company logo

UWAP Tjenesteplattform

Andreas Åkre Solberg
Andreas Åkre Solberg

The document discusses the need for a service platform for the education sector that goes beyond single sign-on. It proposes a modern platform based on OAuth and REST APIs that provides common services like user management, groups, activity streams, and notifications. This would allow applications to integrate these services through simple libraries and APIs. The platform could also offer app hosting, federated widgets, and an app store. UNINETT's work on such a platform could benefit the education sector by providing a common solution for collaboration services.

Technology
1 of 67
Download to read offline
Tjenesteplattform for utdanningssektoren Andreas Åkre Solberg UNINETT, WebTechnology Research and Development Oslo, 11. Februar 2013
Once upon a time Web Single Sign-On with Feide was sufficient to provide a seamless user experience across services.
Collaboration on Internet ✤ A dynamic working groups spanning multiple organizations, work together using digital collaboration tools: ✤ A wiki ✤ Document sharing tool ✤ Meeting planner and calendar ✤ A Web meeting tool ✤ A web forum or mailinglist
to provide a satisfying end-user experience spanning multiple collaboration services today, SSO is not sufficient.
Traditional approach App1 ✤ Does not scale ✤ Not dynamic User directory App2 ✤ (Often) only in one direction Batch provisioning of users and groups App3 ✤ But it works, for some use cases
Modern services ✤ Modern collaboration services share a bunch of common components: ✤ Users and authentication ✤ Groups and authorization ✤ Invitation (mapping users and groups) ✤ Activity stream ✤ Notifications (mail and mobile push notifications) ✤ Data access with third party REST API
SP App App App API + OAuth Addtional services SAML Component X Authentication Feide
Spin-offs Innovasjon tjeneste utvikling / utrulling ? 2016 ? ? 2015 Webteknologi 2013-2016 2014 2013 Webteknologi 2012 2012 2011 Innovasjonsprosjekter i UNINETT knyttet til "Webteknologi"
SP App App App API + OAuth Addtional services SAML UWAP Prototype Authentication Feide
✤ ettersom man tilbyr mer og mer støtte-funksjonalitet (auth, gruppe ++) kan fort kompleksiteten bli uholdbar på tjenestesiden. ✤ Enkelt for tjenesteleveandørene er svært viktig! ✤ De bør forholde seg til biblioteker og ikke egne software komponenter som kjører på tjenestesiden. ✤ Vi må lære av økosystemene til store aktører som har lykkes med ekstrem skalerbarhet; google, linkedin, facebook m.fl. ✤ Selvbetjening er kritisk.
New more Users complex model Third party Service Third party Service applications applications Content Content API Delegation API
UWAP Eco-system Users Content UWAP App Providers Prototype Developers Schools Universites
✤ Tjenesteleverandører ✤ Selvbetjening
✤ Enklere integrasjon enn Feide. ✤ Innebygget støtte for mobil Apps ✤ Basert på OAuth / OpenID Connect ✤ Enkelt API med en rekke ekstra funksjonalitet
Grupper
Groups ✤ Dynamic large-scale groups from Feide attributes ✤ Organization, department App App App ✤ Affiliation: like «all students at NTNU» ✤ Ad-hoc groups ✤ Managed external groups Platform ✤ FS ✤ KIND, etc. Dynamic Groups Feide Ad-hoc FS SurfConext +++ groups Self-service Managed external groups group mngmnt
Ad-Hoc groups ✤ Everyone can create new groups, and invite/add users ✤ Important to easily find the correct persons you want to add. Search engine based upon real names. ✤
Group information model ✤ List of members ✤ Membership roles: ✤ Admin/Owner ✤ Regular member ✤ (Subscribers) Optionally a group can have subscribers. ✤ Managed external group providers may defined extended role definitions ✤ Applications may off course provide additional membership roles locally. ✤ Work on international harmonization of this basic model.
Invitations, people search ✤ Protected with Feide ✤ Generic js library ✤ Very easy integration in all applications that needs to «add users».
ActivityStreams
Activity streams › One activity stream per group. ng eti › Generic information model me or ge › Acitivites posted to one or more groups Ag pa ew a ou s at wiki an gr if i p he rle led e!» a o t ho om ted Public / Private du dt rT he elc rea de se Normal / Promoted sc «w as c ad ew u on re m n d Si A An User interfaces ng d f» eti an › WebApp frontend .pd me ed re nd rm tu › Mobile app frontend tor tec tte nfi ll a co ds hi › Widgets o u rc wi eas Cl «a › API dr at file An da re ha zs ma Ar
Notifications ✤ The most important activity updates ✤ Email and mobile push notifications ✤ Personal preferences
Federated Widgets
Federated Widgets ✤ Embed content on remote site ✤ Challenge: ✤ secure environment ✤ authentication
Federated Widgets ✤ Super simple integration! ✤ Secure separation from container site ✤ Auto-detecting existing Feide session ✤ No server-side requirements...
Federated Widget ✤ The group-context-aware «webmeeting button» using eting ect We bme onn be C ting Ado in mee Jo
Feed Widget Shows an aggregated feed of activities for the current selected group across all collaboration tools. Share widget Can be easily integrated anywhere. Will share a link to the current web page to the activity stream for the current user in a selected group context.
Feed Widget Shows an aggregated feed of activities for the current selected group across all collaboration tools. Share widget Can be easily integrated anywhere. Will share a link to the current web page to the activity stream for the current user in a selected group context.
Feed Widget Shows an aggregated feed of activities for the current selected group across all collaboration tools. RedMine With Activity Stream Connector enabled.
WebApp Hosting (PaaS)
✤ Web as a platform ✤ Usage increasing ✤ True multi-platform: desktop, mobile (android+ios+) ✤ REST API friendly ✤ Client side logic ✤ Makes it hassle-free to provide cloudbased hosting environment ✤ Easier service roll-out in education: no installations..
creating a new application...
How does it work ✤ Each app gets their own domain: myapp.eduapps.org ✤ App engine provides a javascript API to access all functionality ✤ The javascript engine communicates with app server using REST api. ✤ Let’s test it...
89 lines of code (mostly UI)
App Store
App Store Authorization data New Potentials Connecting edu institutions to content providers with new more efficient and fair payment models
Content Providers
Open Data ✤ Universites increasing interest to share their data using APIs. ✤ Win-win situation. Both students and commercial providers may provide value-added service by making use of the data. ✤ Privacy very important! ✤ Complex to provide authentication model for delegated access to personal data.
Service Providers Frontend ✤ REST API with delegated access control. ✤ Feide authentication API ✤ Trust model Business ✤ Scalable management of third Information Logic party client access control.
SOA Gatekeeper ✤ Manage 3rd party clients ✤ Control your open APIs ✤ User control, scopes, consent etc.
Providing a Service
✤ Ikke enda planlagt. Spin-offs ✤ Stor interesse i UH for å Innovasjon tjeneste utvikling / utrulling få opp tjenester. Spesielt ? rundt grupper. ? 2016 ? ✤ Koordineres med: 2015 It.1 First iteration Webteknologi Service Pilot 2013-2016 2014 ✤ Feide 2013 ✤ Nansen 2012 Webteknologi 2012 2011 ✤ IKTsenteret tidlig med... Innovasjonsprosjekter i UNINETT knyttet til "Webteknologi"
Innpakking sammen med Feide SP App App App API + OAuth Addtional services SAML Feide Connect! Authentication Feide
Feide Connect! added-value ✤ Simpler integration with modern web applications (OAuth-based) ✤ Support for authentication on mobile ✤ Easier integration with PaaS (Nansen) ✤ Support emerging standards: OpenID Connect! ✤ Groups ✤ People search ✤ Easier cross-federation integration! ✤ Built-in discovery ✤ Guest users ✤ Lower bar of entry for service providers: students etc. Self-service Support no-contract consumers! ✤ Extensible: allows us to add new services! ✤
Will not solve... ✤ Local Single Sign-On on Windows Domain with Keberos ✤ Higher level authentication (2-factor). LoA. ✤ Accepting more loosely connected user through Feide (UiO)
Services to add later on ✤ Activity streams ✤ Calendar sharing ✤ REST API engine ✤ Activity streams ✤ Notifications ✤ SOA Gatekeeper ✤ App hosting ✤ Storage, message queue, cache, release management etc. ✤ Federated widgets ✤ OAuth REST Engine (simplify using protected REST APIs) ✤ ...
NANSEN
✤ https://www.uninett.no/skytjenester-rapport-med-anbefalinger ✤ Stor interesse i UH sektoren om samarbeid rundt ✤ innkjøp av kommersielle skytjenester ✤ oppbygning av egen skyinfrastruktur i sektoren for å organisere morgendagens tjenester for sektoren. Erstatter dagens IKT drift. Med samarbeid.
UNINETTs Nova plattform ✤ Arbeid i 2013-2014. ✤ Bygger opp skyinfrastruktur internt for å kunne hoste våre egne tjenester ✤ Kompetanseoppbygning og forarbeid som kan være nyttig for sektoren i relisering av NANSENs sektor-spesifikke sky.
WebApp PaaS Fil Lagring UWAP Core In-memory Høytilgjengelighet Feide NoSQL store OS Virtualisering
✤ UNINETT FAS ✤ Administrative Apps for selvbetjening ✤ eCampus ✤ Samarbeidsverktøy: Agora, RedMine, webmøter etc.
App App All platform UI built as indepedent apps People search Groups and authorization Calendar sharing REST API Engine Activity stream Service Platform Notifications Authentication Feide
IKTsenteret
✤ Felles samarbeid om Feide. ✤ Svært sammenfallende behov rundt støtte mot tjeneser til utdanningssektoren. ✤ Trolig kosteffektivt å jobbe med en felles løsning når behovene er overlappende. ✤
Mulige oppgaver ✤ Samarbeid rundt informasjonsmodell for grupper ✤ Pilot-integrasjon mot f.eks. fylkeskommune gruppe-provider ✤ Pilot-integrasjon mot BAS for person-søk ✤ Pilot tjenesteleverandører ✤ Interessante use-case: DVM,
last slide

Recommended

UNINETT Feide Connect (Feide fagdag)
UNINETT Feide Connect (Feide fagdag)UNINETT Feide Connect (Feide fagdag)
UNINETT Feide Connect (Feide fagdag)
Andreas Åkre Solberg
 
Feide Connect
Feide ConnectFeide Connect
Feide Connect
Andreas Åkre Solberg
 
UNINETT IoU - UWAP Prototype
UNINETT IoU - UWAP PrototypeUNINETT IoU - UWAP Prototype
UNINETT IoU - UWAP Prototype
Andreas Åkre Solberg
 
"Everything is a service" (Redux)
"Everything is a service" (Redux)"Everything is a service" (Redux)
"Everything is a service" (Redux)
Sylvain Cottong
 
Everything is a service
Everything is a serviceEverything is a service
Everything is a service
Sylvain Cottong
 
The Ultimate DevOps Playbook
The Ultimate DevOps PlaybookThe Ultimate DevOps Playbook
The Ultimate DevOps Playbook
Eggplant
 
The Ultimate DevOps Playbook
The Ultimate DevOps PlaybookThe Ultimate DevOps Playbook
The Ultimate DevOps Playbook
Jalpesh Patel
 
WSO2Con Asia 2014 - Building the API-Centric Enterprise
WSO2Con Asia 2014 - Building the API-Centric EnterpriseWSO2Con Asia 2014 - Building the API-Centric Enterprise
WSO2Con Asia 2014 - Building the API-Centric EnterpriseWSO2
 

Recommended

UNINETT Feide Connect (Feide fagdag)
UNINETT Feide Connect (Feide fagdag)UNINETT Feide Connect (Feide fagdag)
UNINETT Feide Connect (Feide fagdag)
Andreas Åkre Solberg
 
Feide Connect
Feide ConnectFeide Connect
Feide Connect
Andreas Åkre Solberg
 
UNINETT IoU - UWAP Prototype
UNINETT IoU - UWAP PrototypeUNINETT IoU - UWAP Prototype
UNINETT IoU - UWAP Prototype
Andreas Åkre Solberg
 
"Everything is a service" (Redux)
"Everything is a service" (Redux)"Everything is a service" (Redux)
"Everything is a service" (Redux)
Sylvain Cottong
 
Everything is a service
Everything is a serviceEverything is a service
Everything is a service
Sylvain Cottong
 
The Ultimate DevOps Playbook
The Ultimate DevOps PlaybookThe Ultimate DevOps Playbook
The Ultimate DevOps Playbook
Eggplant
 
The Ultimate DevOps Playbook
The Ultimate DevOps PlaybookThe Ultimate DevOps Playbook
The Ultimate DevOps Playbook
Jalpesh Patel
 
WSO2Con Asia 2014 - Building the API-Centric Enterprise
WSO2Con Asia 2014 - Building the API-Centric EnterpriseWSO2Con Asia 2014 - Building the API-Centric Enterprise
WSO2Con Asia 2014 - Building the API-Centric EnterpriseWSO2
 
Let the community do more than just Apps!
Let the community do more than just Apps!Let the community do more than just Apps!
Let the community do more than just Apps!
Joachim Ritter
 
Mashups and Open Apis- Ideas that worked for us…
Mashups and Open Apis- Ideas that worked for us…Mashups and Open Apis- Ideas that worked for us…
Mashups and Open Apis- Ideas that worked for us…
Sujit Mohanty
 
Re Inventing Enterprise IT around APIs and Apps
Re Inventing Enterprise IT around APIs and AppsRe Inventing Enterprise IT around APIs and Apps
Re Inventing Enterprise IT around APIs and AppsWSO2
 
SwellRT: Awakening Decentralized Collaboration
SwellRT: Awakening Decentralized CollaborationSwellRT: Awakening Decentralized Collaboration
SwellRT: Awakening Decentralized Collaboration
Samer Hassan
 
DevOps at DreamLab
DevOps at DreamLabDevOps at DreamLab
DevOps at DreamLab
DreamLab
 
Communicating for Improvement
Communicating for ImprovementCommunicating for Improvement
Communicating for Improvement
Ingrid Koehler
 
IRJET-Garbage Monitoring and Management using Internet of things
IRJET-Garbage Monitoring and Management using Internet of thingsIRJET-Garbage Monitoring and Management using Internet of things
IRJET-Garbage Monitoring and Management using Internet of things
IRJET Journal
 
[WSO2 Summit Brazil 2018] The API-driven World
[WSO2 Summit Brazil 2018] The API-driven World[WSO2 Summit Brazil 2018] The API-driven World
[WSO2 Summit Brazil 2018] The API-driven World
WSO2
 
USG Web Tech Day 2017 - CMS Tunnel Vision
USG Web Tech Day 2017 - CMS Tunnel VisionUSG Web Tech Day 2017 - CMS Tunnel Vision
USG Web Tech Day 2017 - CMS Tunnel Vision
Eric Sembrat
 
APIs as a Product Strategy
APIs as a Product StrategyAPIs as a Product Strategy
APIs as a Product Strategy
Ravi Kumar
 
Open API Strategy, by Sensedia
Open API Strategy, by SensediaOpen API Strategy, by Sensedia
Open API Strategy, by SensediaSensedia
 
apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...
apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...
apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...
apidays
 
Building APIs with Apigee Edge and Microsoft Azure
Building APIs with Apigee Edge and Microsoft AzureBuilding APIs with Apigee Edge and Microsoft Azure
Building APIs with Apigee Edge and Microsoft Azure
Apigee | Google Cloud
 
Six Principles of Software Design to Empower Scientists
Six Principles of Software Design to Empower ScientistsSix Principles of Software Design to Empower Scientists
Six Principles of Software Design to Empower Scientists
David De Roure
 
API Management in Digital Transformation
API Management in Digital TransformationAPI Management in Digital Transformation
API Management in Digital Transformation
Aditya Thatte
 
The Future of API Specifications -- Aidan Cunniffe 2021
The Future of API Specifications -- Aidan Cunniffe 2021The Future of API Specifications -- Aidan Cunniffe 2021
The Future of API Specifications -- Aidan Cunniffe 2021
Aidan Cunniffe
 
Open APIs Design
Open APIs DesignOpen APIs Design
Open APIs Design
Isabelle Mauny
 
Open / Public APIs - From Implementation to Digital Business Model
Open / Public APIs - From Implementation to Digital Business ModelOpen / Public APIs - From Implementation to Digital Business Model
Open / Public APIs - From Implementation to Digital Business Model
Bastian Migge
 
Documenting APIs: Sample Code and More (with many pictures of cats)
Documenting APIs: Sample Code and More (with many pictures of cats)Documenting APIs: Sample Code and More (with many pictures of cats)
Documenting APIs: Sample Code and More (with many pictures of cats)
Anya Stettler
 
The Developer Experience
The Developer Experience The Developer Experience
The Developer Experience
Pamela Fox
 
OpenID Connect Federation
OpenID Connect FederationOpenID Connect Federation
OpenID Connect Federation
Andreas Åkre Solberg
 
Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017
Andreas Åkre Solberg
 

More Related Content

Similar to UWAP Tjenesteplattform

Let the community do more than just Apps!
Let the community do more than just Apps!Let the community do more than just Apps!
Let the community do more than just Apps!
Joachim Ritter
 
Mashups and Open Apis- Ideas that worked for us…
Mashups and Open Apis- Ideas that worked for us…Mashups and Open Apis- Ideas that worked for us…
Mashups and Open Apis- Ideas that worked for us…
Sujit Mohanty
 
Re Inventing Enterprise IT around APIs and Apps
Re Inventing Enterprise IT around APIs and AppsRe Inventing Enterprise IT around APIs and Apps
Re Inventing Enterprise IT around APIs and AppsWSO2
 
SwellRT: Awakening Decentralized Collaboration
SwellRT: Awakening Decentralized CollaborationSwellRT: Awakening Decentralized Collaboration
SwellRT: Awakening Decentralized Collaboration
Samer Hassan
 
DevOps at DreamLab
DevOps at DreamLabDevOps at DreamLab
DevOps at DreamLab
DreamLab
 
Communicating for Improvement
Communicating for ImprovementCommunicating for Improvement
Communicating for Improvement
Ingrid Koehler
 
IRJET-Garbage Monitoring and Management using Internet of things
IRJET-Garbage Monitoring and Management using Internet of thingsIRJET-Garbage Monitoring and Management using Internet of things
IRJET-Garbage Monitoring and Management using Internet of things
IRJET Journal
 
[WSO2 Summit Brazil 2018] The API-driven World
[WSO2 Summit Brazil 2018] The API-driven World[WSO2 Summit Brazil 2018] The API-driven World
[WSO2 Summit Brazil 2018] The API-driven World
WSO2
 
USG Web Tech Day 2017 - CMS Tunnel Vision
USG Web Tech Day 2017 - CMS Tunnel VisionUSG Web Tech Day 2017 - CMS Tunnel Vision
USG Web Tech Day 2017 - CMS Tunnel Vision
Eric Sembrat
 
APIs as a Product Strategy
APIs as a Product StrategyAPIs as a Product Strategy
APIs as a Product Strategy
Ravi Kumar
 
Open API Strategy, by Sensedia
Open API Strategy, by SensediaOpen API Strategy, by Sensedia
Open API Strategy, by SensediaSensedia
 
apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...
apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...
apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...
apidays
 
Building APIs with Apigee Edge and Microsoft Azure
Building APIs with Apigee Edge and Microsoft AzureBuilding APIs with Apigee Edge and Microsoft Azure
Building APIs with Apigee Edge and Microsoft Azure
Apigee | Google Cloud
 
Six Principles of Software Design to Empower Scientists
Six Principles of Software Design to Empower ScientistsSix Principles of Software Design to Empower Scientists
Six Principles of Software Design to Empower Scientists
David De Roure
 
API Management in Digital Transformation
API Management in Digital TransformationAPI Management in Digital Transformation
API Management in Digital Transformation
Aditya Thatte
 
The Future of API Specifications -- Aidan Cunniffe 2021
The Future of API Specifications -- Aidan Cunniffe 2021The Future of API Specifications -- Aidan Cunniffe 2021
The Future of API Specifications -- Aidan Cunniffe 2021
Aidan Cunniffe
 
Open APIs Design
Open APIs DesignOpen APIs Design
Open APIs Design
Isabelle Mauny
 
Open / Public APIs - From Implementation to Digital Business Model
Open / Public APIs - From Implementation to Digital Business ModelOpen / Public APIs - From Implementation to Digital Business Model
Open / Public APIs - From Implementation to Digital Business Model
Bastian Migge
 
Documenting APIs: Sample Code and More (with many pictures of cats)
Documenting APIs: Sample Code and More (with many pictures of cats)Documenting APIs: Sample Code and More (with many pictures of cats)
Documenting APIs: Sample Code and More (with many pictures of cats)
Anya Stettler
 
The Developer Experience
The Developer Experience The Developer Experience
The Developer Experience
Pamela Fox
 

Similar to UWAP Tjenesteplattform (20)

Let the community do more than just Apps!
Let the community do more than just Apps!Let the community do more than just Apps!
Let the community do more than just Apps!
 
Mashups and Open Apis- Ideas that worked for us…
Mashups and Open Apis- Ideas that worked for us…Mashups and Open Apis- Ideas that worked for us…
Mashups and Open Apis- Ideas that worked for us…
 
Re Inventing Enterprise IT around APIs and Apps
Re Inventing Enterprise IT around APIs and AppsRe Inventing Enterprise IT around APIs and Apps
Re Inventing Enterprise IT around APIs and Apps
 
SwellRT: Awakening Decentralized Collaboration
SwellRT: Awakening Decentralized CollaborationSwellRT: Awakening Decentralized Collaboration
SwellRT: Awakening Decentralized Collaboration
 
DevOps at DreamLab
DevOps at DreamLabDevOps at DreamLab
DevOps at DreamLab
 
Communicating for Improvement
Communicating for ImprovementCommunicating for Improvement
Communicating for Improvement
 
IRJET-Garbage Monitoring and Management using Internet of things
IRJET-Garbage Monitoring and Management using Internet of thingsIRJET-Garbage Monitoring and Management using Internet of things
IRJET-Garbage Monitoring and Management using Internet of things
 
[WSO2 Summit Brazil 2018] The API-driven World
[WSO2 Summit Brazil 2018] The API-driven World[WSO2 Summit Brazil 2018] The API-driven World
[WSO2 Summit Brazil 2018] The API-driven World
 
USG Web Tech Day 2017 - CMS Tunnel Vision
USG Web Tech Day 2017 - CMS Tunnel VisionUSG Web Tech Day 2017 - CMS Tunnel Vision
USG Web Tech Day 2017 - CMS Tunnel Vision
 
APIs as a Product Strategy
APIs as a Product StrategyAPIs as a Product Strategy
APIs as a Product Strategy
 
Open API Strategy, by Sensedia
Open API Strategy, by SensediaOpen API Strategy, by Sensedia
Open API Strategy, by Sensedia
 
apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...
apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...
apidays Helsinki & North 2023 - Business-oriented API products with APIOps Cy...
 
Building APIs with Apigee Edge and Microsoft Azure
Building APIs with Apigee Edge and Microsoft AzureBuilding APIs with Apigee Edge and Microsoft Azure
Building APIs with Apigee Edge and Microsoft Azure
 
Six Principles of Software Design to Empower Scientists
Six Principles of Software Design to Empower ScientistsSix Principles of Software Design to Empower Scientists
Six Principles of Software Design to Empower Scientists
 
API Management in Digital Transformation
API Management in Digital TransformationAPI Management in Digital Transformation
API Management in Digital Transformation
 
The Future of API Specifications -- Aidan Cunniffe 2021
The Future of API Specifications -- Aidan Cunniffe 2021The Future of API Specifications -- Aidan Cunniffe 2021
The Future of API Specifications -- Aidan Cunniffe 2021
 
Open APIs Design
Open APIs DesignOpen APIs Design
Open APIs Design
 
Open / Public APIs - From Implementation to Digital Business Model
Open / Public APIs - From Implementation to Digital Business ModelOpen / Public APIs - From Implementation to Digital Business Model
Open / Public APIs - From Implementation to Digital Business Model
 
Documenting APIs: Sample Code and More (with many pictures of cats)
Documenting APIs: Sample Code and More (with many pictures of cats)Documenting APIs: Sample Code and More (with many pictures of cats)
Documenting APIs: Sample Code and More (with many pictures of cats)
 
The Developer Experience
The Developer Experience The Developer Experience
The Developer Experience
 

More from Andreas Åkre Solberg

OpenID Connect Federation
OpenID Connect FederationOpenID Connect Federation
OpenID Connect Federation
Andreas Åkre Solberg
 
Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017
Andreas Åkre Solberg
 
Dataporten Workshop
Dataporten WorkshopDataporten Workshop
Dataporten Workshop
Andreas Åkre Solberg
 
Dataporten
DataportenDataporten
Dataporten
Andreas Åkre Solberg
 
Dataporten for Sigma2, Hell
Dataporten for Sigma2, HellDataporten for Sigma2, Hell
Dataporten for Sigma2, Hell
Andreas Åkre Solberg
 
Dataporten intro (workshop with Difi)
Dataporten intro (workshop with Difi)Dataporten intro (workshop with Difi)
Dataporten intro (workshop with Difi)
Andreas Åkre Solberg
 
Connect (UNINETT-konferansen, Tromsø)
Connect (UNINETT-konferansen, Tromsø)Connect (UNINETT-konferansen, Tromsø)
Connect (UNINETT-konferansen, Tromsø)
Andreas Åkre Solberg
 
Connect (USIT)
Connect (USIT)Connect (USIT)
Connect (USIT)
Andreas Åkre Solberg
 
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyenNorsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
Andreas Åkre Solberg
 
Feide Connect – Standard Norge February 2015
Feide Connect – Standard Norge February 2015Feide Connect – Standard Norge February 2015
Feide Connect – Standard Norge February 2015
Andreas Åkre Solberg
 
Feide Connect SUHS 2014
Feide Connect SUHS 2014Feide Connect SUHS 2014
Feide Connect SUHS 2014
Andreas Åkre Solberg
 
Feide Connect (NOKIOS 2014)
Feide Connect (NOKIOS 2014)Feide Connect (NOKIOS 2014)
Feide Connect (NOKIOS 2014)
Andreas Åkre Solberg
 
Feide Connect TNC2014
Feide Connect TNC2014Feide Connect TNC2014
Feide Connect TNC2014
Andreas Åkre Solberg
 
SCIM and VOOT
SCIM and VOOTSCIM and VOOT
SCIM and VOOT
Andreas Åkre Solberg
 
Feide Connect
Feide ConnectFeide Connect
Feide Connect
Andreas Åkre Solberg
 
OAuth 2.0
OAuth 2.0OAuth 2.0
OAuth 2.0
Andreas Åkre Solberg
 
UNINETT WebApp Park
UNINETT WebApp ParkUNINETT WebApp Park
UNINETT WebApp Park
Andreas Åkre Solberg
 

More from Andreas Åkre Solberg (20)

OpenID Connect Federation
OpenID Connect FederationOpenID Connect Federation
OpenID Connect Federation
 
Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017
 
Dataporten Workshop
Dataporten WorkshopDataporten Workshop
Dataporten Workshop
 
Dataporten
DataportenDataporten
Dataporten
 
Dataporten for Sigma2, Hell
Dataporten for Sigma2, HellDataporten for Sigma2, Hell
Dataporten for Sigma2, Hell
 
Dataporten intro (workshop with Difi)
Dataporten intro (workshop with Difi)Dataporten intro (workshop with Difi)
Dataporten intro (workshop with Difi)
 
Connect (UNINETT-konferansen, Tromsø)
Connect (UNINETT-konferansen, Tromsø)Connect (UNINETT-konferansen, Tromsø)
Connect (UNINETT-konferansen, Tromsø)
 
Connect (USIT)
Connect (USIT)Connect (USIT)
Connect (USIT)
 
Connect (Feide fagdag, Gardemoen)
Connect (Feide fagdag, Gardemoen)Connect (Feide fagdag, Gardemoen)
Connect (Feide fagdag, Gardemoen)
 
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyenNorsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
 
Feide Connect – Standard Norge February 2015
Feide Connect – Standard Norge February 2015Feide Connect – Standard Norge February 2015
Feide Connect – Standard Norge February 2015
 
Feide Connect SUHS 2014
Feide Connect SUHS 2014Feide Connect SUHS 2014
Feide Connect SUHS 2014
 
Feide Connect (NOKIOS 2014)
Feide Connect (NOKIOS 2014)Feide Connect (NOKIOS 2014)
Feide Connect (NOKIOS 2014)
 
Feide Connect TNC2014
Feide Connect TNC2014Feide Connect TNC2014
Feide Connect TNC2014
 
Feide connect tnc2014
Feide connect tnc2014Feide connect tnc2014
Feide connect tnc2014
 
SCIM and VOOT
SCIM and VOOTSCIM and VOOT
SCIM and VOOT
 
Feide Connect (IoU Fagdag)
Feide Connect (IoU Fagdag)Feide Connect (IoU Fagdag)
Feide Connect (IoU Fagdag)
 
Feide Connect
Feide ConnectFeide Connect
Feide Connect
 
OAuth 2.0
OAuth 2.0OAuth 2.0
OAuth 2.0
 
UNINETT WebApp Park
UNINETT WebApp ParkUNINETT WebApp Park
UNINETT WebApp Park
 

Recently uploaded

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdfFIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance
 
Key Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfKey Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdf
Cheryl Hung
 
Generating a custom Ruby SDK for your web service or Rails API using Smithy
Generating a custom Ruby SDK for your web service or Rails API using SmithyGenerating a custom Ruby SDK for your web service or Rails API using Smithy
Generating a custom Ruby SDK for your web service or Rails API using Smithy
g2nightmarescribd
 
GraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge GraphGraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge Graph
Guy Korland
 
Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !
KatiaHIMEUR1
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Product School
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance
 
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Ramesh Iyer
 
Elevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object CalisthenicsElevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object Calisthenics
Dorra BARTAGUIZ
 
DevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA ConnectDevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA Connect
Kari Kakkonen
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
ThousandEyes
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
DianaGray10
 
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
UiPathCommunity
 
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Tobias Schneck
 
Knowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and backKnowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and back
Elena Simperl
 
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdfFIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
OnBoard
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
Thijs Feryn
 
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
DanBrown980551
 
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
Prayukth K V
 

Recently uploaded (20)

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdfFIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
 
Key Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfKey Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdf
 
Generating a custom Ruby SDK for your web service or Rails API using Smithy
Generating a custom Ruby SDK for your web service or Rails API using SmithyGenerating a custom Ruby SDK for your web service or Rails API using Smithy
Generating a custom Ruby SDK for your web service or Rails API using Smithy
 
GraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge GraphGraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge Graph
 
Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
 
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
 
Elevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object CalisthenicsElevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object Calisthenics
 
DevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA ConnectDevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA Connect
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
 
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
 
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
 
Knowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and backKnowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and back
 
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdfFIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdf
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
 
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
 
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
 

UWAP Tjenesteplattform

  • 1. Tjenesteplattform for utdanningssektoren Andreas Åkre Solberg UNINETT, WebTechnology Research and Development Oslo, 11. Februar 2013
  • 2. Once upon a time Web Single Sign-On with Feide was sufficient to provide a seamless user experience across services.
  • 3. Collaboration on Internet ✤ A dynamic working groups spanning multiple organizations, work together using digital collaboration tools: ✤ A wiki ✤ Document sharing tool ✤ Meeting planner and calendar ✤ A Web meeting tool ✤ A web forum or mailinglist
  • 4.
  • 5. to provide a satisfying end-user experience spanning multiple collaboration services today, SSO is not sufficient.
  • 6. Traditional approach App1 ✤ Does not scale ✤ Not dynamic User directory App2 ✤ (Often) only in one direction Batch provisioning of users and groups App3 ✤ But it works, for some use cases
  • 7. Modern services ✤ Modern collaboration services share a bunch of common components: ✤ Users and authentication ✤ Groups and authorization ✤ Invitation (mapping users and groups) ✤ Activity stream ✤ Notifications (mail and mobile push notifications) ✤ Data access with third party REST API
  • 8. SP App App App API + OAuth Addtional services SAML Component X Authentication Feide
  • 9. Spin-offs Innovasjon tjeneste utvikling / utrulling ? 2016 ? ? 2015 Webteknologi 2013-2016 2014 2013 Webteknologi 2012 2012 2011 Innovasjonsprosjekter i UNINETT knyttet til "Webteknologi"
  • 10. SP App App App API + OAuth Addtional services SAML UWAP Prototype Authentication Feide
  • 11. ettersom man tilbyr mer og mer støtte-funksjonalitet (auth, gruppe ++) kan fort kompleksiteten bli uholdbar på tjenestesiden. ✤ Enkelt for tjenesteleveandørene er svært viktig! ✤ De bør forholde seg til biblioteker og ikke egne software komponenter som kjører på tjenestesiden. ✤ Vi må lære av økosystemene til store aktører som har lykkes med ekstrem skalerbarhet; google, linkedin, facebook m.fl. ✤ Selvbetjening er kritisk.
  • 12. New more Users complex model Third party Service Third party Service applications applications Content Content API Delegation API
  • 13. UWAP Eco-system Users Content UWAP App Providers Prototype Developers Schools Universites
  • 14. Tjenesteleverandører ✤ Selvbetjening
  • 15. Enklere integrasjon enn Feide. ✤ Innebygget støtte for mobil Apps ✤ Basert på OAuth / OpenID Connect ✤ Enkelt API med en rekke ekstra funksjonalitet
  • 17. Groups ✤ Dynamic large-scale groups from Feide attributes ✤ Organization, department App App App ✤ Affiliation: like «all students at NTNU» ✤ Ad-hoc groups ✤ Managed external groups Platform ✤ FS ✤ KIND, etc. Dynamic Groups Feide Ad-hoc FS SurfConext +++ groups Self-service Managed external groups group mngmnt
  • 18. Ad-Hoc groups ✤ Everyone can create new groups, and invite/add users ✤ Important to easily find the correct persons you want to add. Search engine based upon real names. ✤
  • 19. Group information model ✤ List of members ✤ Membership roles: ✤ Admin/Owner ✤ Regular member ✤ (Subscribers) Optionally a group can have subscribers. ✤ Managed external group providers may defined extended role definitions ✤ Applications may off course provide additional membership roles locally. ✤ Work on international harmonization of this basic model.
  • 20.
  • 21. Invitations, people search ✤ Protected with Feide ✤ Generic js library ✤ Very easy integration in all applications that needs to «add users».
  • 23. Activity streams › One activity stream per group. ng eti › Generic information model me or ge › Acitivites posted to one or more groups Ag pa ew a ou s at wiki an gr if i p he rle led e!» a o t ho om ted Public / Private du dt rT he elc rea de se Normal / Promoted sc «w as c ad ew u on re m n d Si A An User interfaces ng d f» eti an › WebApp frontend .pd me ed re nd rm tu › Mobile app frontend tor tec tte nfi ll a co ds hi › Widgets o u rc wi eas Cl «a › API dr at file An da re ha zs ma Ar
  • 24.
  • 25. Notifications ✤ The most important activity updates ✤ Email and mobile push notifications ✤ Personal preferences
  • 27. Federated Widgets ✤ Embed content on remote site ✤ Challenge: ✤ secure environment ✤ authentication
  • 28. Federated Widgets ✤ Super simple integration! ✤ Secure separation from container site ✤ Auto-detecting existing Feide session ✤ No server-side requirements...
  • 29. Federated Widget ✤ The group-context-aware «webmeeting button» using eting ect We bme onn be C ting Ado in mee Jo
  • 30. Feed Widget Shows an aggregated feed of activities for the current selected group across all collaboration tools. Share widget Can be easily integrated anywhere. Will share a link to the current web page to the activity stream for the current user in a selected group context.
  • 31. Feed Widget Shows an aggregated feed of activities for the current selected group across all collaboration tools. Share widget Can be easily integrated anywhere. Will share a link to the current web page to the activity stream for the current user in a selected group context.
  • 32. Feed Widget Shows an aggregated feed of activities for the current selected group across all collaboration tools. RedMine With Activity Stream Connector enabled.
  • 34. Web as a platform ✤ Usage increasing ✤ True multi-platform: desktop, mobile (android+ios+) ✤ REST API friendly ✤ Client side logic ✤ Makes it hassle-free to provide cloudbased hosting environment ✤ Easier service roll-out in education: no installations..
  • 35. creating a new application...
  • 36.
  • 37. How does it work ✤ Each app gets their own domain: myapp.eduapps.org ✤ App engine provides a javascript API to access all functionality ✤ The javascript engine communicates with app server using REST api. ✤ Let’s test it...
  • 38.
  • 39.
  • 40.
  • 41.
  • 42.
  • 43. 89 lines of code (mostly UI)
  • 45.
  • 46. App Store Authorization data New Potentials Connecting edu institutions to content providers with new more efficient and fair payment models
  • 48. Open Data ✤ Universites increasing interest to share their data using APIs. ✤ Win-win situation. Both students and commercial providers may provide value-added service by making use of the data. ✤ Privacy very important! ✤ Complex to provide authentication model for delegated access to personal data.
  • 49.
  • 50. Service Providers Frontend ✤ REST API with delegated access control. ✤ Feide authentication API ✤ Trust model Business ✤ Scalable management of third Information Logic party client access control.
  • 51. SOA Gatekeeper ✤ Manage 3rd party clients ✤ Control your open APIs ✤ User control, scopes, consent etc.
  • 53. Ikke enda planlagt. Spin-offs ✤ Stor interesse i UH for å Innovasjon tjeneste utvikling / utrulling få opp tjenester. Spesielt ? rundt grupper. ? 2016 ? ✤ Koordineres med: 2015 It.1 First iteration Webteknologi Service Pilot 2013-2016 2014 ✤ Feide 2013 ✤ Nansen 2012 Webteknologi 2012 2011 ✤ IKTsenteret tidlig med... Innovasjonsprosjekter i UNINETT knyttet til "Webteknologi"
  • 54. Innpakking sammen med Feide SP App App App API + OAuth Addtional services SAML Feide Connect! Authentication Feide
  • 55. Feide Connect! added-value ✤ Simpler integration with modern web applications (OAuth-based) ✤ Support for authentication on mobile ✤ Easier integration with PaaS (Nansen) ✤ Support emerging standards: OpenID Connect! ✤ Groups ✤ People search ✤ Easier cross-federation integration! ✤ Built-in discovery ✤ Guest users ✤ Lower bar of entry for service providers: students etc. Self-service Support no-contract consumers! ✤ Extensible: allows us to add new services! ✤
  • 56. Will not solve... ✤ Local Single Sign-On on Windows Domain with Keberos ✤ Higher level authentication (2-factor). LoA. ✤ Accepting more loosely connected user through Feide (UiO)
  • 57. Services to add later on ✤ Activity streams ✤ Calendar sharing ✤ REST API engine ✤ Activity streams ✤ Notifications ✤ SOA Gatekeeper ✤ App hosting ✤ Storage, message queue, cache, release management etc. ✤ Federated widgets ✤ OAuth REST Engine (simplify using protected REST APIs) ✤ ...
  • 59. https://www.uninett.no/skytjenester-rapport-med-anbefalinger ✤ Stor interesse i UH sektoren om samarbeid rundt ✤ innkjøp av kommersielle skytjenester ✤ oppbygning av egen skyinfrastruktur i sektoren for å organisere morgendagens tjenester for sektoren. Erstatter dagens IKT drift. Med samarbeid.
  • 60. UNINETTs Nova plattform ✤ Arbeid i 2013-2014. ✤ Bygger opp skyinfrastruktur internt for å kunne hoste våre egne tjenester ✤ Kompetanseoppbygning og forarbeid som kan være nyttig for sektoren i relisering av NANSENs sektor-spesifikke sky.
  • 61. WebApp PaaS Fil Lagring UWAP Core In-memory Høytilgjengelighet Feide NoSQL store OS Virtualisering
  • 62. UNINETT FAS ✤ Administrative Apps for selvbetjening ✤ eCampus ✤ Samarbeidsverktøy: Agora, RedMine, webmøter etc.
  • 63. App App All platform UI built as indepedent apps People search Groups and authorization Calendar sharing REST API Engine Activity stream Service Platform Notifications Authentication Feide
  • 65. Felles samarbeid om Feide. ✤ Svært sammenfallende behov rundt støtte mot tjeneser til utdanningssektoren. ✤ Trolig kosteffektivt å jobbe med en felles løsning når behovene er overlappende. ✤
  • 66. Mulige oppgaver ✤ Samarbeid rundt informasjonsmodell for grupper ✤ Pilot-integrasjon mot f.eks. fylkeskommune gruppe-provider ✤ Pilot-integrasjon mot BAS for person-søk ✤ Pilot tjenesteleverandører ✤ Interessante use-case: DVM,