Shibboleth Developers

[Velpi <>]

[forwarded to Shibboleth-dev to continue the discussion there]

Velpi a écrit :
> > I'd add that it's probably the last major design task remaining, and 
> > we've
> > been putting it off because other design issues were more complex and 
> > more
> > potentially contentious among the team itself. We worked over a lot of
> > ground this week in Memphis, but didn't make it to this subject.
> >
> > This area is understandably important to *deployers*, and may be more
> > contentious outside the team, but the overriding requirement is that 
> > there
> > be a loose coupling between the IdP and the authentication handlers, and
> > that the deployer will need to express what aspects of SAML-mandated
> > behavior a given handler can support.
> >
> > After that, it will just be a big pile of handlers coming from all 
> > over and
> > it should be a short matter of time for people to build what they need.
>
> I probably shouldn't be saying this, but... I'm wondering why nobody 
> suggest *teaming up* with one of the *existing* open-source 
> authentication systems?
CAS is almost the only SSO used in French high ed. So the Shib 2 / CAS
coupling is important for us too. We'll try to schedule some work (which
would probably be achieved by a CS master student) on this topic for
2007. The idea of teaming up makes sense. Are you aware of other similar
initiatives in other countries?