= Proposal Number: ? Proposal Title: Add Shibboleth as an Authentication Option = || '''Date''' || 2008/08/19 || || '''Contact(s)''' || James Dempsey || || '''Last edited''' || [[Timestamp]] || || '''Status''' || draft || || '''Assigned to release''' || 2.4.0 || || '''Resources''' || CSIRO staff available to implement the proposal. Will do an example implementation in the !BlueNet MEST sandbox if there are no objections. Simon Pigot to commit to trunk with other 2.4.0 changes. || == Overview == The aim of the proposal is to create a Shibboleth service provider for !GeoNetwork (initially !BlueNet MEST). This will allow [http://www.federation.org.au/ Australian Access Federation] and potentially other shibboleth based users to authenticate with the register and interact with it as if they had authenticated via LDAP or natively. === Proposal Type === * '''Type''': Module Change * '''App''': !GeoNetwork * '''Module''': Login === Links === * '''Documents''': [http://trac.osgeo.org/geonetwork/attachment/wiki/ShibbolethAuth/BlueNet%20MEST%20AAF%20Integration%20v1.0.doc?format=raw Technical Design] * '''Email discussions''': [http://www.nabble.com/Introductions-td18992303.html First mentioned] === Voting history === * Vote proposed : 20090326 * Vote passed: 20090328 * Jeroen Ticheler +1 * Andrea Carboni 0 * Patrizia Monteduro +1 * Emanuele Tajariol +1 * Francois Prunayre +1 * Simon Pigot +1 * Archie Warnock +0 ---- == Motivations == CSIRO wishes to have a !GeoNetwork repository that can be used by selected collaborators external to the organisation. Rather than add these collaborators to our LDAP or to make the data public we would like to use the [http://www.federation.org.au/ Australian Access Federation] initiative to allow staff from collaborating institutions to log into the !GeoNetwork instance. This will provide large savings on administration time. == Proposal == An in depth proposal can be found in the attached document. === Backwards Compatibility Issues === Care will be taken to ensure that the current LDAP and native authentication systems are not disrupted by the change. == Risks == TBA == Participants == * James Dempsey * Martin Pienaar * Simon Pigot * Ryan Fraser * John Morrisey