Wednesday Dec 03, 2008

Policy Agents, SugarCRM, simpleSAMLphp and OpenSSO

A couple of great articles from Sun Developer Network over the past two weeks... First on the roster, Sean Brydon and Aravindan Ranganathan team up with the ever-present Marina Sum for a short series entitled 'Protecting Applications With Java EE Policy Agents'. Part 1:Basic Steps provides an excellent grounding in just what a policy agent does, and how to deploy and configure one with OpenSSO. Download the sample Java EE web application and work through the example that Sean and Aravindan present.

Next up, Thomas Varghese and Marina tackle Single Sign-On for SugarCRM Through a SAML-Based Integration of OpenSSO and simpleSAMLphp. Regular readers will know that I have a soft spot for simpleSAMLphp, since it evolved from the 'Lightbulb' SAML/PHP code that I wrote as a proof of concept many (Internet) years ago. Here, Thomas uses simpleSAMLphp as a lightweight bridge between the PHP-based SugarCRM and OpenSSO, showing how a fictitious SugarCRM hosting company provides single sign-on to its enterprise customers. In this context, simpleSAMLphp is effectively a PHP Fedlet, or perhaps the Fedlet is a Java simpleSAMLphp . Either way - go read all about it at SDN.

Monday Mar 03, 2008

Long Live simpleSAMLphp!

A somewhat bittersweet moment today as I sent this email to the OpenSSO lists:

Some time ago (October 2006), we released 'Lightbulb', a simple SAML 2.0 service provider/relying party implemented in PHP, as a proof-of-concept, to show that it was indeed possible to write a 'pure' (no custom modules required) SAML 2.0 implementation in PHP.

Later, Lightbulb became an OpenSSO Extension, and was used by Andreas Solberg at FEIDE as the inspiration for simpleSAMLphp - a much more complete SAML 2.0 implementation, again in PHP, but this time including identity provider functionality, Shibboleth 1.3 and more.

Andreas has done a great job, devoting considerable time and effort to simpleSAMLphp, to the great benefit of the wider SAML 2.0 community. Over the months, simpleSAMLphp has become widely deployed in the academic community, to the extent that there are now events such as simpleSAMLphp workshops.

Consequently, we have decided to mark the OpenSSO SAML2/PHP Extension as 'deprecated' in favor of simpleSAMLphp. The old code will be left in place in CVS, but there is now a prominent README directing people to simpleSAMLphp.

Long live simpleSAMLphp!

Kind of like seeing one of your kids moving out of the family home and starting their own life, I guess...

About

superpat

Search

Archives
« April 2014
MonTueWedThuFriSatSun
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
    
       
Today