Notice: this Wiki will be going read only early in 2024 and edits will no longer be possible. Please see: https://gitlab.eclipse.org/eclipsefdn/helpdesk/-/wikis/Wiki-shutdown-plan for the plan.
Relying Party Service
The initial focus of the Relying Party Service will be on defining the requirements for the support and evaluating which open source initiatives may have some complementary technologies/solutions that may be relevant. RPS will provide cross browser and protocol support, while preparing for unknown future protocols. To assure broad use it is imperative that Relying Party Service use and deployment be as easy as possible.
Note: We are in the requirements gathering stage of this component.
Abbreviations
- IdA = Identity Agent/Identity Selector
- IdP = Identity Provider
- RP = Relying Party
- RPS = Relying Party Service
Requirements
- Protocol support
- CardSpace 1.0
- OpenID 2.0
- yet to be determined
- Client Support
- Browser
- IE7
- FireFox 2.0 with CS Extension
- Opera
- Rich Client
- Second Life
- Browser
- Develop set of utilities/libraries to assist in RP creation
- Generation of Identity Agent Trigger mechanism
- HTML - <object ...application/x-InformationCard
- XHTML
- WSPolicy
- Idemix policy
- Generation of RP Policy tokens <object ...
- Generation of Privacy Statement for IdA retrieval
- RP validation of IdA Response Token
- RP disassembly of IdA Response Token
- RP accessibility to IdA Response Token elements
- claim data
- issuer
- token expiration
- public keys
- Token PPID validation ( to IdP )
- Token timestamp validation
- Generic keystore for RP Cert retrieval
- WebServer Platforms
- Apache
- IIS
- J2EE Server Platforms
- Tomcat
- Weblogic
- Websphere
- JBoss
- library type ?
- ASP.Net / C#
- Java
- javascript/ecmascript
- PHP
- Generation of Identity Agent Trigger mechanism
There are a few initiatives underway that may provide a basis for RPS support. Specificially, the Pamela Project, and xmldap.org. Hopefully we can collaborate with them on providing a consistent RPS.