You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@cxf.apache.org by chris snow <ch...@gmail.com> on 2013/05/07 14:22:25 UTC

Fediz - intended project direction?

What is the intended project direction for Fediz, is it intended that:

- the default out of the box setup of Fediz will provide users with a SAML
/ OAUTH solutions similar to WSO2 identity server or OpenSSO?, or
- Fediz will be a framework that you have to configure you your specific
requirements.

Many thanks,

Chris

Re: Fediz - intended project direction?

Posted by chris snow <ch...@gmail.com>.

Hi Oli,

That's awesome - I'll get back up to speed on the project over the
next couple of weeks and give some feedback.

Many thanks,

Chris

On Mon, Jan 27, 2014 at 2:31 PM, Oliver Wulff <ow...@talend.com> wrote:
> Hi there
>
> As mentioned in this thread the plan is to provide REST interfaces for the IDP. The first step is committed to trunk (version 1.2.0-SNAPSHOT). You find an initial description of the interface, the current status and how to start it here:
> http://owulff.blogspot.ch/2014/01/features-coming-in-fediz-12-rest.html
>
> Please provide feedback here.
>
> Thanks
> Oli
>
> ________________________________________
> From: snowch [chsnow123@gmail.com]
> Sent: 08 May 2013 10:56
> To: dev@cxf.apache.org
> Subject: RE: Fediz - intended project direction?
>
> Hi Oli,
>
> That sounds great - this functionality is where I was heading with my
> questions.
>
> Many thanks,
>
> Chris
>
>
>
> --
> View this message in context: http://cxf.547215.n5.nabble.com/RE-Fediz-intended-project-direction-tp5727411p5727416.html
> Sent from the cxf-dev mailing list archive at Nabble.com.



-- 
Check out my professional profile and connect with me on LinkedIn.
http://lnkd.in/cw5k69

RE: Fediz - intended project direction?

Posted by Oliver Wulff <ow...@talend.com>.

Hi there

As mentioned in this thread the plan is to provide REST interfaces for the IDP. The first step is committed to trunk (version 1.2.0-SNAPSHOT). You find an initial description of the interface, the current status and how to start it here:
http://owulff.blogspot.ch/2014/01/features-coming-in-fediz-12-rest.html

Please provide feedback here.

Thanks
Oli

________________________________________
From: snowch [chsnow123@gmail.com]
Sent: 08 May 2013 10:56
To: dev@cxf.apache.org
Subject: RE: Fediz - intended project direction?

Hi Oli,

That sounds great - this functionality is where I was heading with my
questions.

Many thanks,

Chris



--
View this message in context: http://cxf.547215.n5.nabble.com/RE-Fediz-intended-project-direction-tp5727411p5727416.html
Sent from the cxf-dev mailing list archive at Nabble.com.

RE: Fediz - intended project direction?

Posted by snowch <ch...@gmail.com>.

Hi Oli,

That sounds great - this functionality is where I was heading with my
questions.

Many thanks,

Chris



--
View this message in context: http://cxf.547215.n5.nabble.com/RE-Fediz-intended-project-direction-tp5727411p5727416.html
Sent from the cxf-dev mailing list archive at Nabble.com.

RE: Fediz - intended project direction?

Posted by Oliver Wulff <ow...@talend.com>.

If you don't mind I'd like to move this dicussion to the dev list.

Just thinking out loud... the Fediz IDP should become an application but might still require to deploy the WAR into your favorite servlet container.

When the new feature (FEDIZ-3) is completed we're close for 1.1.0 release. But this still requires to customize spring configs to integrate the IDP into your company's security infrastructure. What is missing is a GUI. I'd like to see putting some REST interfaces for the IDP/STS which is used by either a command line tool and web console. The REST services should cover:
- configure a trusted IDP (certificate, claims transformation, ...)
- configure a relying party (application, ...)
- configure an IDP instance (authentication backend, signer certificate, ...)

Thanks
Oli

________________________________________
From: Sergey Beryozkin [sberyozkin@gmail.com]
Sent: 07 May 2013 23:22
To: users@cxf.apache.org
Subject: Re: Fediz - intended project direction?

On 07/05/13 22:21, Sergey Beryozkin wrote:
> Hi
> On 07/05/13 16:25, snowch wrote:
>> Hi Oli,
>>
>> The question is whether Fediz is aimed at being a "framework" or an
>> "application".
>>
>> For example, I would classify the WSO2 Identity Server and OpenSSO as
>> applications. If you just want to deploy a WSO2 IS, or OpenSSO, you would
>> rarely checkout the source code and start hacking around.
>>
>> However, Fediz feels more like a framework that you would build your own
>> application on top of. You start by checking out the source code for
>> Fediz, then customize the configuration (and login pages, etc),
>> followed by
>> building your own war with your own configuration.
>>
>> Would you see Fediz moving more towards being an application, or more
>> as a
>> framework?
>>
> IMHO the former is a specific 'application' of the former and I honestly
> hope that in time we will see a dedicated generic application(s) built
> around Fediz plugin.

The 2nd 'former' was meant to read the 'latter' :-)

>
> Cheers, Sergey
>
>> Does my question make sense now?
>>
>> Many thanks,
>>
>> Chris
>>
>>
>>
>>
>>
>> --
>> View this message in context:
>> http://cxf.547215.n5.nabble.com/Fediz-intended-project-direction-tp5727348p5727363.html
>>
>> Sent from the cxf-user mailing list archive at Nabble.com.
>
>


--
Sergey Beryozkin

Talend Community Coders
http://coders.talend.com/

Blog: http://sberyozkin.blogspot.com

RE: Fediz - intended project direction?

Posted by Oliver Wulff <ow...@talend.com>.

If you don't mind I'd like to move this dicussion to the dev list.

Just thinking out loud... the Fediz IDP should become an application but might still require to deploy the WAR into your favorite servlet container.

When the new feature (FEDIZ-3) is completed we're close for 1.1.0 release. But this still requires to customize spring configs to integrate the IDP into your company's security infrastructure. What is missing is a GUI. I'd like to see putting some REST interfaces for the IDP/STS which is used by either a command line tool and web console. The REST services should cover:
- configure a trusted IDP (certificate, claims transformation, ...)
- configure a relying party (application, ...)
- configure an IDP instance (authentication backend, signer certificate, ...)

Thanks
Oli

________________________________________
From: Sergey Beryozkin [sberyozkin@gmail.com]
Sent: 07 May 2013 23:22
To: users@cxf.apache.org
Subject: Re: Fediz - intended project direction?

On 07/05/13 22:21, Sergey Beryozkin wrote:
> Hi
> On 07/05/13 16:25, snowch wrote:
>> Hi Oli,
>>
>> The question is whether Fediz is aimed at being a "framework" or an
>> "application".
>>
>> For example, I would classify the WSO2 Identity Server and OpenSSO as
>> applications. If you just want to deploy a WSO2 IS, or OpenSSO, you would
>> rarely checkout the source code and start hacking around.
>>
>> However, Fediz feels more like a framework that you would build your own
>> application on top of. You start by checking out the source code for
>> Fediz, then customize the configuration (and login pages, etc),
>> followed by
>> building your own war with your own configuration.
>>
>> Would you see Fediz moving more towards being an application, or more
>> as a
>> framework?
>>
> IMHO the former is a specific 'application' of the former and I honestly
> hope that in time we will see a dedicated generic application(s) built
> around Fediz plugin.

The 2nd 'former' was meant to read the 'latter' :-)

>
> Cheers, Sergey
>
>> Does my question make sense now?
>>
>> Many thanks,
>>
>> Chris
>>
>>
>>
>>
>>
>> --
>> View this message in context:
>> http://cxf.547215.n5.nabble.com/Fediz-intended-project-direction-tp5727348p5727363.html
>>
>> Sent from the cxf-user mailing list archive at Nabble.com.
>
>


--
Sergey Beryozkin

Talend Community Coders
http://coders.talend.com/

Blog: http://sberyozkin.blogspot.com

Re: Fediz - intended project direction?

Posted by Sergey Beryozkin <sb...@gmail.com>.

On 07/05/13 22:21, Sergey Beryozkin wrote:
> Hi
> On 07/05/13 16:25, snowch wrote:
>> Hi Oli,
>>
>> The question is whether Fediz is aimed at being a "framework" or an
>> "application".
>>
>> For example, I would classify the WSO2 Identity Server and OpenSSO as
>> applications. If you just want to deploy a WSO2 IS, or OpenSSO, you would
>> rarely checkout the source code and start hacking around.
>>
>> However, Fediz feels more like a framework that you would build your own
>> application on top of. You start by checking out the source code for
>> Fediz, then customize the configuration (and login pages, etc),
>> followed by
>> building your own war with your own configuration.
>>
>> Would you see Fediz moving more towards being an application, or more
>> as a
>> framework?
>>
> IMHO the former is a specific 'application' of the former and I honestly
> hope that in time we will see a dedicated generic application(s) built
> around Fediz plugin.

The 2nd 'former' was meant to read the 'latter' :-)

>
> Cheers, Sergey
>
>> Does my question make sense now?
>>
>> Many thanks,
>>
>> Chris
>>
>>
>>
>>
>>
>> --
>> View this message in context:
>> http://cxf.547215.n5.nabble.com/Fediz-intended-project-direction-tp5727348p5727363.html
>>
>> Sent from the cxf-user mailing list archive at Nabble.com.
>
>


-- 
Sergey Beryozkin

Talend Community Coders
http://coders.talend.com/

Blog: http://sberyozkin.blogspot.com

Re: Fediz - intended project direction?

Posted by Sergey Beryozkin <sb...@gmail.com>.

Hi
On 07/05/13 16:25, snowch wrote:
> Hi Oli,
>
> The question is whether Fediz is aimed at being a "framework" or an
> "application".
>
> For example, I would classify the WSO2 Identity Server and OpenSSO as
> applications.  If you just want to deploy a WSO2 IS, or OpenSSO, you would
> rarely checkout the source code and start hacking around.
>
> However, Fediz feels more like a framework that you would build your own
> application on top of.   You start by checking out the source code for
> Fediz, then customize the configuration (and login pages, etc), followed by
> building your own war with your own configuration.
>
> Would you see Fediz moving more towards being an application, or more as a
> framework?
>
IMHO the former is a specific 'application' of the former and I honestly 
hope that in time we will see a dedicated generic application(s)  built 
around Fediz plugin.

Cheers, Sergey

> Does my question make sense now?
>
> Many thanks,
>
> Chris
>
>
>
>
>
> --
> View this message in context: http://cxf.547215.n5.nabble.com/Fediz-intended-project-direction-tp5727348p5727363.html
> Sent from the cxf-user mailing list archive at Nabble.com.


-- 
Sergey Beryozkin

Talend Community Coders
http://coders.talend.com/

Blog: http://sberyozkin.blogspot.com

RE: Fediz - intended project direction?

Posted by snowch <ch...@gmail.com>.

Hi Oli,

The question is whether Fediz is aimed at being a "framework" or an
"application".

For example, I would classify the WSO2 Identity Server and OpenSSO as
applications.  If you just want to deploy a WSO2 IS, or OpenSSO, you would
rarely checkout the source code and start hacking around.

However, Fediz feels more like a framework that you would build your own
application on top of.   You start by checking out the source code for
Fediz, then customize the configuration (and login pages, etc), followed by
building your own war with your own configuration. 

Would you see Fediz moving more towards being an application, or more as a
framework?

Does my question make sense now?

Many thanks,

Chris





--
View this message in context: http://cxf.547215.n5.nabble.com/Fediz-intended-project-direction-tp5727348p5727363.html
Sent from the cxf-user mailing list archive at Nabble.com.

RE: Fediz - intended project direction?

Posted by Oliver Wulff <ow...@talend.com>.

I don't really understand your question. The Fediz Plugin (deployed on the relying party side) is a framework component which must be plugged into an existing container.

The IDP will provide new functionality with the new release. What exactly are you looking for as a deliverable?

Thanks
Oli

________________________________________
From: chris snow [chsnow123@gmail.com]
Sent: 07 May 2013 14:22
To: users@cxf.apache.org
Subject: Fediz - intended project direction?

What is the intended project direction for Fediz, is it intended that:

- the default out of the box setup of Fediz will provide users with a SAML
/ OAUTH solutions similar to WSO2 identity server or OpenSSO?, or
- Fediz will be a framework that you have to configure you your specific
requirements.

Many thanks,

Chris