UMA telecon 2012-09-13
UMA telecon 2012-09-13
Date and Time
- Focus meeting on Thursday, 13 September 2012, at 9am PT (time chart) -Â educational
- Skype: +99051000000481
- US: +1-805-309-2350 (other international dial-in lines available) | Room Code: 178-2540
Agenda
- Review education-related open AIs
- Opportunities at IIW XV: Oct 23-25
- Making plans for a webinar and possibly more tweet chats
- Who can take part? Who can do live demos?
- Documenting use cases
- New proposal
- AOB
Minutes
Review education-related open AIs
We'll discuss a new use case template in the section below. Eve's PMRM action item depends on the use case one.
Opportunities at IIW XV: Oct 23-25
We still don't know who's attending.
Making plans for a webinar and possibly more tweet chats
Eve will work with implementers to identify a webinar date, hopefully before IIW.
Documenting use cases
New proposal for use case template:
- Introduction (outlining audiences, sectors, etc.)
- Problem Scenario
- Current Flow (if applicable)
- Problems
- (Gaps in OAuth, OpenID Connect, SAML, etc.)
- Proposed Improvements
- Solution Scenario (outlining the UMA "constellation", likely policy settings, OAuth grant flows in use (namely, how users authenticate into the AM to get PATs and AATs), system rules/trust framework/binding obligations implications, etc.)
- Solution Flow (including swimlanes or similar detail)
- Solution Demo (if applicable, with screenshots etc.)
We agreed we should try to apply this to known use cases, and to ask interested parties to submit their own.
There is some resistance in the higher-ed community, and presumably other enterprise-type communities, to using something that doesn't use SAML as a basis. Could we outline how to bootstrap into UMA from SAML, in the same way that SAML can already bootstrap into OAuth? We already name-check ("RECOMMEND") the SAML assertion flow in the UMA core spec in environments where SAML is already used, and don't care if people authenticate into an AM using SAML or something else. Maybe the MIT use case is a good one for illustrating this, vs. the Newcastle one.
The new wave of online education is the perfect use case for sharing certifications, logging in to get course material, and so on, using OAuth and UMA – definitely no SAML. At MIT, they broke out a separate EdX organization to do this. So far it reuses the MIT IT infrastructure, but they're trying to stand up their own resources. It would be cool to interview them to understand their "IAM/resource sharing use cases", but right now their work is under wraps. Many other universities are planning to roll out something similar.
Here are the use cases that we should try to document in the new template:
- Street Identity++ (Maciej/Thomas/Eve)
- Self-contained app (Eve)
- MIT (Thomas)
- Online personal loan (Domenico)
Eve will create a new use case template on the wiki, and we will plan to publish PDF versions of pages in this area as well.
Wikipedia information
Riccardo was working on an Italian version of a Wikipedia entry. Domenico will ask Riccardo how this currently stands.
Attendees
- Eve
- Domenico
- Thomas
Regrets:
- Maciej
- Lukasz
Next Meetings
- Focus meeting on Thursday, 20 September 2012, at 9am PT (time chart) - legal
- All-hands meeting on Thursday, 27 September 2012, at 9am PT (time chart)