Roller Identity Management - Integrating Enterprise Sign On Engine

[Bradley Beddoes <be...@intient.com>]

Hi All,

We have a project called the Enterprise Sign On Engine (
http://esoeproject.org ) which is an Apache 2.0 licensed platform for
authentication, authorization and accountability for both internal
enterprise users and federated contexts.

With ESOE integrated into Roller you would automatically get the
benefits of using openID and Shibboleth. Roller would also get our
ability to do true single sign on from Active Directory enabled
enterprise clients. We also have a very powerful XACML based
authorization engine which allows some really unique flexibility in
providing access control to content.

All said and done we are trying to provide a clean general purpose
solution to identity and federation that can be used across many
products without needing to continually reimplement this kind of thing.
You don't have to write your own database for every application you
create we believe it should and can be the same way with identity.

We intend to support further technologies in the future such as Yahoo's
BBAuth and Microsofts Identity Card. The really neat thing is that the
application side doesn't need to be changed at all when these new
options come on board for end users.

Please take a look around the website and I would really like to talk
further with you guys if there is an interest in doing some work together.

regards,
Bradley

-- 
Bradley Beddoes
Lead Software Architect
Intient

http://intient.com - "Building intelligent open source solutions for
your enterprise"

Re: Tag Cloud does not understand future publishing

[Dave <sn...@gmail.com>]

Hi Henry,

Thanks. Please report the issue to JIRA.

I don't really have any more time to commit to the 4.0 and 3.1.1
releases so I probably won't be able to fix that until the 4.1
time-frame.

- Dave



On 9/17/07, henry.chang@gsa.gov <he...@gsa.gov> wrote:
> This issue is similar to ROL-1558, except this time the problem occurs
> with tag cloud instead of search index. I'll open a bug in Roller-JITA.
>
> Scenario:
> User publishes a new entry with future publishing date. The tag of the new
> entry shows up in the tag cloud immediately. But, the entry is not
> available.
>
> Henry Chang
> IT Specialist
> USA.gov Technologies
> General Services Administration
> Office Phone: 202-219-1801
> E-mail: henry.chang@gsa.gov
>

Tag Cloud does not understand future publishing

[he...@gsa.gov]

This issue is similar to ROL-1558, except this time the problem occurs 
with tag cloud instead of search index. I'll open a bug in Roller-JITA.

Scenario:
User publishes a new entry with future publishing date. The tag of the new 
entry shows up in the tag cloud immediately. But, the entry is not 
available.

Henry Chang
IT Specialist
USA.gov Technologies 
General Services Administration
Office Phone: 202-219-1801
E-mail: henry.chang@gsa.gov

Re: Roller Identity Management - Integrating Enterprise Sign On Engine

[Dave <sn...@gmail.com>]

On 9/16/07, Matt Raible <ma...@raibledesigns.com> wrote:
> Roller uses Acegi Security, which supports SSO out-of-the-box with
> systems like Yale's CAS and SiteMinder.
>
> http://acegisecurity.org
>
> If you provide integration with Acegi, that means you've provided it
> for Roller. Here's a mailing list post describing how to integrate CAS
> and Roller.
>
> http://tinyurl.com/2r2neq
>
> I'm doing a talk on SSO integration with Roller at the Colorado
> Software Summit this year.
>
> http://www.softwaresummit.com/2007/speakers/raible.htm
>
> Since Acegi supports CAS and OpenID, I was hoping to demo both. If you
> happen to get it working with ESOE, I'd be happy to demonstrate (or at
> least mention) that as well.

You might want to check out the new work in Roller 4.1. We have made
user management completely pluggable, so you can plugin your own
UserManager implementation, i.e. one that does not user Roller's
rolleruser and userrole tables.

We're also getting ready to contribute some code that will make it
easier to configure Roller for plain old CMA (i.e. not using Acegi),
so you can get at the authentication and authorization services
offered by your app server (e.g. OpenSSO, Sun's Access Manager, etc.
support in Glassfish, etc.).

- Dave

Re: Roller Identity Management - Integrating Enterprise Sign On Engine

[Bradley Beddoes <be...@intient.com>]

Hi Matt,
Excellent we have an Acegi compatible plugin on the way so I will let 
the list know when this becomes available.

regards,
Bradley

Matt Raible wrote:
> Roller uses Acegi Security, which supports SSO out-of-the-box with
> systems like Yale's CAS and SiteMinder.
> 
> http://acegisecurity.org
> 
> If you provide integration with Acegi, that means you've provided it
> for Roller. Here's a mailing list post describing how to integrate CAS
> and Roller.
> 
> http://tinyurl.com/2r2neq
> 
> I'm doing a talk on SSO integration with Roller at the Colorado
> Software Summit this year.
> 
> http://www.softwaresummit.com/2007/speakers/raible.htm
> 
> Since Acegi supports CAS and OpenID, I was hoping to demo both. If you
> happen to get it working with ESOE, I'd be happy to demonstrate (or at
> least mention) that as well.
> 
> I hope to finish my slides today and will try to post them to this list.
> 
> Matt
> 
> On 9/15/07, Bradley Beddoes <be...@intient.com> wrote:
>> Hi All,
>>
>> We have a project called the Enterprise Sign On Engine (
>> http://esoeproject.org ) which is an Apache 2.0 licensed platform for
>> authentication, authorization and accountability for both internal
>> enterprise users and federated contexts.
>>
>> With ESOE integrated into Roller you would automatically get the
>> benefits of using openID and Shibboleth. Roller would also get our
>> ability to do true single sign on from Active Directory enabled
>> enterprise clients. We also have a very powerful XACML based
>> authorization engine which allows some really unique flexibility in
>> providing access control to content.
>>
>> All said and done we are trying to provide a clean general purpose
>> solution to identity and federation that can be used across many
>> products without needing to continually reimplement this kind of thing.
>> You don't have to write your own database for every application you
>> create we believe it should and can be the same way with identity.
>>
>> We intend to support further technologies in the future such as Yahoo's
>> BBAuth and Microsofts Identity Card. The really neat thing is that the
>> application side doesn't need to be changed at all when these new
>> options come on board for end users.
>>
>> Please take a look around the website and I would really like to talk
>> further with you guys if there is an interest in doing some work together.
>>
>> regards,
>> Bradley
>>
>> --
>> Bradley Beddoes
>> Lead Software Architect
>> Intient
>>
>> http://intient.com - "Building intelligent open source solutions for
>> your enterprise"
>>
> 
> 


-- 
Bradley Beddoes
Lead Software Architect
Intient

http://intient.com - "Building intelligent open source solutions for
your enterprise"

Re: Roller Identity Management - Integrating Enterprise Sign On Engine

[Matt Raible <ma...@raibledesigns.com>]

Roller uses Acegi Security, which supports SSO out-of-the-box with
systems like Yale's CAS and SiteMinder.

http://acegisecurity.org

If you provide integration with Acegi, that means you've provided it
for Roller. Here's a mailing list post describing how to integrate CAS
and Roller.

http://tinyurl.com/2r2neq

I'm doing a talk on SSO integration with Roller at the Colorado
Software Summit this year.

http://www.softwaresummit.com/2007/speakers/raible.htm

Since Acegi supports CAS and OpenID, I was hoping to demo both. If you
happen to get it working with ESOE, I'd be happy to demonstrate (or at
least mention) that as well.

I hope to finish my slides today and will try to post them to this list.

Matt

On 9/15/07, Bradley Beddoes <be...@intient.com> wrote:
> Hi All,
>
> We have a project called the Enterprise Sign On Engine (
> http://esoeproject.org ) which is an Apache 2.0 licensed platform for
> authentication, authorization and accountability for both internal
> enterprise users and federated contexts.
>
> With ESOE integrated into Roller you would automatically get the
> benefits of using openID and Shibboleth. Roller would also get our
> ability to do true single sign on from Active Directory enabled
> enterprise clients. We also have a very powerful XACML based
> authorization engine which allows some really unique flexibility in
> providing access control to content.
>
> All said and done we are trying to provide a clean general purpose
> solution to identity and federation that can be used across many
> products without needing to continually reimplement this kind of thing.
> You don't have to write your own database for every application you
> create we believe it should and can be the same way with identity.
>
> We intend to support further technologies in the future such as Yahoo's
> BBAuth and Microsofts Identity Card. The really neat thing is that the
> application side doesn't need to be changed at all when these new
> options come on board for end users.
>
> Please take a look around the website and I would really like to talk
> further with you guys if there is an interest in doing some work together.
>
> regards,
> Bradley
>
> --
> Bradley Beddoes
> Lead Software Architect
> Intient
>
> http://intient.com - "Building intelligent open source solutions for
> your enterprise"
>


-- 
http://raibledesigns.com

Re: Roller Identity Management - Integrating Enterprise Sign On Engine

[Chris Custine <cc...@apache.org>]

Wow!  Thanks for this info David.  This is the first time I have heard of
the ESOE project, but from a quick glance at their confluence wiki and web
site it definitely appears as though there are some opportunities for
synergy here.  I am going to make it a point to build and test this out in
the following week.  This looks really interesting!

Thanks,
Chris

On 9/15/07, David Jencks <da...@yahoo.com> wrote:
>
> This looks to me like it might have some relevance to what we are trying
> to do with triplesec.
>
> thanks
> david jencks
>
> Begin forwarded message:
>
> *From: *Bradley Beddoes <be...@intient.com>
> *Date: *September 15, 2007 9:59:10 PM EDT
> *To: *dev@roller.apache.org
> *Subject: **Roller Identity Management - Integrating Enterprise Sign On
> Engine*
> *Reply-To: *dev@roller.apache.org
>
> Hi All,
>
> We have a project called the Enterprise Sign On Engine (
> http://esoeproject.org ) which is an Apache 2.0 licensed platform for
> authentication, authorization and accountability for both internal
> enterprise users and federated contexts.
>
> With ESOE integrated into Roller you would automatically get the
> benefits of using openID and Shibboleth. Roller would also get our
> ability to do true single sign on from Active Directory enabled
> enterprise clients. We also have a very powerful XACML based
> authorization engine which allows some really unique flexibility in
> providing access control to content.
>
> All said and done we are trying to provide a clean general purpose
> solution to identity and federation that can be used across many
> products without needing to continually reimplement this kind of thing.
> You don't have to write your own database for every application you
> create we believe it should and can be the same way with identity.
>
> We intend to support further technologies in the future such as Yahoo's
> BBAuth and Microsofts Identity Card. The really neat thing is that the
> application side doesn't need to be changed at all when these new
> options come on board for end users.
>
> Please take a look around the website and I would really like to talk
> further with you guys if there is an interest in doing some work together.
>
> regards,
> Bradley
>
> --
> Bradley Beddoes
> Lead Software Architect
> Intient
>
> http://intient.com - "Building intelligent open source solutions for
> your enterprise"
>
>
>

Fwd: Roller Identity Management - Integrating Enterprise Sign On Engine

[David Jencks <da...@yahoo.com>]

This looks to me like it might have some relevance to what we are  
trying to do with triplesec.


thanks
david jencks

Begin forwarded message:

> From: Bradley Beddoes <be...@intient.com>
> Date: September 15, 2007 9:59:10 PM EDT
> To: dev@roller.apache.org
> Subject: Roller Identity Management - Integrating Enterprise Sign  
> On Engine
> Reply-To: dev@roller.apache.org
>
> Hi All,
>
> We have a project called the Enterprise Sign On Engine (
> http://esoeproject.org ) which is an Apache 2.0 licensed platform for
> authentication, authorization and accountability for both internal
> enterprise users and federated contexts.
>
> With ESOE integrated into Roller you would automatically get the
> benefits of using openID and Shibboleth. Roller would also get our
> ability to do true single sign on from Active Directory enabled
> enterprise clients. We also have a very powerful XACML based
> authorization engine which allows some really unique flexibility in
> providing access control to content.
>
> All said and done we are trying to provide a clean general purpose
> solution to identity and federation that can be used across many
> products without needing to continually reimplement this kind of  
> thing.
> You don't have to write your own database for every application you
> create we believe it should and can be the same way with identity.
>
> We intend to support further technologies in the future such as  
> Yahoo's
> BBAuth and Microsofts Identity Card. The really neat thing is that the
> application side doesn't need to be changed at all when these new
> options come on board for end users.
>
> Please take a look around the website and I would really like to talk
> further with you guys if there is an interest in doing some work  
> together.
>
> regards,
> Bradley
>
> -- 
> Bradley Beddoes
> Lead Software Architect
> Intient
>
> http://intient.com - "Building intelligent open source solutions for
> your enterprise"