This document discusses integrating the Sakai OAE (Open Academic Environment) with Grouper, an open source system for centralized management of user attributes and access privileges. It describes how Grouper can be used to provision groups and courses in Sakai OAE through bidirectional synchronization using events and web services. The integration aims to store group information in Grouper as the system of record and synchronize changes to and from Sakai OAE in a reliable asynchronous manner. Similar integration strategies can be applied to other applications beyond Sakai OAE.

1. Integrating Sakai OAE with Grouper Erik Froese, Hallway Technologies Zach Thomas, Aeroplane Software

2. About This Talk Problem statement Grouper overview Grouper integration strategies Integrating OAE with Grouper Similar strategies with other applications Discussion 2 12th Sakai Conference – Los Angeles, California – June 14-16

3. Identity in Higher Ed Higher ed use cases are unique We model many roles We must have flexibility In contexts In timeframes Our systems must be both open and closed 12th Sakai Conference – Los Angeles, California – June 14-16 3

4. Sakai 2: Groups Management? Sakai 2 has become an informal system of record for enrollments It succeeds by empowering the right people to get the work done On the other hand, it’s hard to use this information other places 12th Sakai Conference – Los Angeles, California – June 14-16 4

5. OAE: Please Delegate We don’t want to rewrite enterprise services in OAE Can we delegate? Calendars Messaging User provisioning Course and Group provisioning 12th Sakai Conference – Los Angeles, California – June 14-16 5

6. What is Grouper? Centralized group info and management Internet2 Indirect membership Web Services for integration Components for importing and exporting data Apache license 6 12th Sakai Conference – Los Angeles, California – June 14-16

7. The IdM Picture 12th Sakai Conference – Los Angeles, California – June 14-16 7

8. Integrating with Grouper Web services Grouper client Populate LDAP with Grouper info XMPP The change log 8 12th Sakai Conference – Los Angeles, California – June 14-16

9. Integration Goals Provision groups and courses in Sakai OAE with Grouper. Two-way sync Store contacts Batch import ACLs (future) 9 12th Sakai Conference – Los Angeles, California – June 14-16

10. Integrating Grouper and OAE Event-based synchronization Both systems provide hooks where you can listen for events Add, Delete, Update, Member add, remove Processing events reliably 10 12th Sakai Conference – Los Angeles, California – June 14-16

11. Grouper to Sakai OAE Some action occurs in Grouper An event is written to the change log Change log consumer is notified Info pushed to Sakai via HTTP POST 11 12th Sakai Conference – Los Angeles, California – June 14-16

12. Grouper to Sakai OAE 12 12th Sakai Conference – Los Angeles, California – June 14-16

13. Sakai OAE to Grouper Events are posted to the OSGiEventAdmin Converted to JMS Messages and placed on a queue Info pushed to Grouper via HTTP POST to Grouper WS 13 12th Sakai Conference – Los Angeles, California – June 14-16

14. Sakai OAE to Grouper 14 12th Sakai Conference – Los Angeles, California – June 14-16

15. Event Processing OAE uses asyncOSGi events Sync events would block JMS messaging is more configurable and can be made reliable and async Grouper change log will retry events if the consumer is written correctly 12th Sakai Conference – Los Angeles, California – June 14-16 15

16. Course Data vs Ad Hoc Two sets of data: Institutional data (SIS) vs what happens in Sakai OAE Sakai is not the system of record Indirect group memberships Include and exclude groups 12th Sakai Conference – Los Angeles, California – June 14-16 16

17. Provisioning Courses 12th Sakai Conference – Los Angeles, California – June 14-16 17

18. Other Applications https://spaces.internet2.edu/display/Grouper/Grouper+Atlassian+connector https://spaces.internet2.edu/display/Grouper/Grouper+integration+with+Kuali+Rice https://spaces.internet2.edu/display/Grouper/ESB+Integration+-+Rob+Hebron https://spaces.internet2.edu/display/Grouper/Grouper+XMPP+notifications+v1.6.0 Both Duke and Oxford are working on CLE integration 12th Sakai Conference – Los Angeles, California – June 14-16 18