Skip to main content

Notice: this Wiki will be going read only early in 2024 and edits will no longer be possible. Please see: https://gitlab.eclipse.org/eclipsefdn/helpdesk/-/wikis/Wiki-shutdown-plan for the plan.

Jump to: navigation, search

Difference between revisions of "Architecture"

m (Components)
(the "Architecture" should be generalized and not project specific)
(55 intermediate revisions by 2 users not shown)
Line 1: Line 1:
This page describes the core components of the planned 1.0 Higgins architecture.
+
'''Architecture''' may refer to:
===Higgins Consumers===
+
Client apps and services that use these core components are expected to include:
+
* [[Higgins Browser Extension]]
+
* "Relying Party" websites that will consume identity data provided by Higgins-based services. These would use at least the "RP Enablement" component mentioned below
+
* Enterprise apps that could potentially rely on the Higgins I-Card Selector service and/or UI, and/or the [[Identity Attribute Service]]
+
===Components===
+
''Note: In this diagram "PI" means a plug-in.'' <br>
+
[[Image:Higgins-v27.JPG]]
+
  
# [[RP Enablement]]
+
== Eclipse Foundation ==
# [[I-Card Manager]]
+
* [[Architecture Council]]
# [[HBX Support]]
+
# [[ISS Web UI]]
+
# [[ISS Client UI]]
+
# [[I-Card Selector Service]] (ISS)
+
# [[I-Card Registry]]
+
# [[I-Card Provider]]
+
# [[Attribute-Claim Mapping]]
+
# [[Token Service]]
+
# [[Token Provider]]: The Token Issuer relies on Token Provider (plug-ins) for packaging and signing of specific kinds of security tokens.
+
# [[Identity Attribute Service]] (IdAS): To support a dynamic environment where sources of identity information may change, it is necessary to provide a common means to access identity and attribute information from across multiple identity repositories. The IdAS virtualizes identity sources and provides a unified view of identity information. IdAS includes services such as: open initial [[Context]], open other [[Context|Contexts]] from the initial or other contexts, negotiate/broker authentication during opening of contexts, navigate the contents of an opened context and inspect contained [[Digital Subject]]s and their attributes, edit attributes (as allowed by the context's policies), associate of [[Digital Subject]]s within and across contexts, creation of new contexts, support management of the attributes of [[Digital Subject]]s linked within and across [[Context]]s. The IdAS API will be accessible via Java and other languages as well as via WSDL and HTTP/XML.
+
# [[Context Provider]]: A [[Context Provider]] adds support for one or more kinds of [[Context]]s to the Higgins framework. These [[Context]]s contain [[Digital Subject]]s that hold [[Identity Attribute]]s. A context provider is responsible for its internal data management, security, encryption, persistence, etc. The provider provides the uni- or bi-directional transformation of data from its internal structures to the normalized IdAS data model. In many cases these [[Context Provider]]s act as adapters or "wrappers" of existing services such as communications systems, collaboration systems, social networks, identity providers, games, enterprise apps, and so on. In addition to web services, [[Context Provider]]s can also adapt client-side applications such as email clients, IM and other messaging and collaboration apps.. We plan to develop approximately 3-5 [[Context Provider]]s We expect that third parties may also choose to contribute [[Context Provider]] implementations to the project.
+
  
===Recent changes to the diagram===
+
== Projects ==
* v27: Renamed "Token Issuer" to "Token Service"
+
* [[Higgins Architecture]]
* v25-6: Rename i-card broker/manager to i-card manager; change line at top connected to ISS Web UI to red (to reflect a possible deployment option is that the ISS Web UI runs local (on same machine as browser))
+
* v24: Changed how "Attribute/Claim Mapping" component interconnects with Token Provider
+
* v23: Added a new component, "Attribute/Claim Mapping"; Changed Token Provider to (optionally) pull claim data from I-Card Provider (instead of directly from IdAS, as it had been in v22).
+
* v22: Split ISS into two: ISS and I-Card Registry; Renamed DI Provider Framework to Token Issuer; And renamed DI Issuer to Token Provider per discussion at most recent F2F. 
+
* v21: Removed the "contributed to Higgins" vs. "Higgins component" distinction; Added "optional" interconnect lines; renamed I-Card Broker to "I-Card Manager (Webapp)"; added annotation for I-Card File/Wire Format;
+
* v20: Renamed STS to DI Issuer Framework; Renamed Token Provider to DI Issuer; Added local/remote interconnect lines; removed HBX and other requesters (to separate diagram)
+
* v18-19: Interface to local STS moved to I-Card Providers (from ISS); Removed "Identity Provider" grey box at the top; Moved Relying Party from the top to its own "Relying Parties" area at the right. Moved lower grey IdP box into its own separate "Service Provider" area. Changed font to Bookman Old Style.
+
* v17: Added two new grey boxes: File Import & Export (of I-Cards), Remote IdP; added a line to show that I-Card Broker WebApp will use IdAS API directly
+
* v16: Added a line from "Local or Remote Enterprise Apps" to the top of "ISS UI (Rich Client)"; Also, added a new grey box: "Identity Provider (Issuer)"
+
* v15: Added "Browser" grey box<br/>
+
:Added in missing ISS UI (Rich Client) component --needed to mimic exactly<br/>
+
:CardSpace's WinXP-based architecture<br/>
+
:Connected the Relying Party to both the Browser and to HBX<br/>
+
:Removed End User Components, Developer, Enterprise -> simply added "Enterprise" to :large grey box text instead<br/>
+
:Removed the RCP Demo App entirely (retiring it)<br/>
+
:Switched the interconnecting lines style<br/>
+
:Split ISS UI & HBX Support into two separate components: ISS UI (WebApp) and HBX :Support<br/>
+
:Shortened Relying Party Tags & Impl to "Relying Party"
+
* v11-14: Added I-Card Providers to ISS; now I-Card Providers consume IdAS API not ISS; add "Enterprise" label
+
* v10: Added I-Card Broker Web App to diagram and text
+
* v9: Added to IdAS API: Local Language Bindings; added two directional arrows to/from STS; added a "gray" STS
+
* v8: Minor formatting tweaks.
+
* v7: Split Higgins core into "IdAS" and "Identity Selector Service", removed "root" Context Providers from diagram, added PAM integration, removed all color coding relating to development status, added "3rd party contributed" distinction/color. Higgins has now become just the name of the enclosing projects, but the component names no longer contain "Higgins".
+
* v6: Added two JAAS boxes
+
 
+
==See Also==
+
* [[Higgins Wiki]]
+

Revision as of 10:25, 16 July 2008

Architecture may refer to:

Eclipse Foundation

Projects

Back to the top