SlideShare a Scribd company logo

About SimpleSAMLphp 2009

Andreas Åkre Solberg
Andreas Åkre Solberg

A generic presentation of SimpleSAMLphp. Made in 2009.

Technology
1 of 20
Download to read offline
Generic presentation Updated: November 2009 simpleSAMLphp Andreas Åkre Solberg andreas.solberg@uninett.no
What is it? Software with focus on SAML (both SP and IdP), but with support for multiple protocols.
Widespread • Wide adoption, and interest is increasing… • Mostly Europe and US. Both commercial / educational. • 350 users on mailing-list. • Translated into 20 languages • IDDY-award in California 2008. Visitors of project homepage demography ›
Project structure Project leader 1 Main developers 2 Secondary commiters ~5 Contributors ~ 15
Why people like it • easy to install and maintain just drop a folder to install :) • aut • easy to extend hent • pro ication s cess o ing fi urces • fully modularized • the lt mes ers • hoo ks • very helpful open source community.
Version 1.5 (October 2009) with improved interoperability with Shibboleth • automated shibboleth-style metadata consumption • Improved experience with combined SAML 1.1 and SAML 2.0 envir. • Improved SAML 1.1 + 2.0 integrated IdP Discovery Service. • SAML 1.1 Artifact binding • encrypted NameIDs
Multiple protocols • SAML 2.X SP • SAML 2.X IdP • Shib 1.3 SP • Shib 1.3 IdP • OpenID Provider • OpenID Consumer • OAuth • WS-Fed / ADFS •!Radius client • Infocard •!LDAP • Twitter auth • CAS • SQL • Facebook auth •!YubiKey *) some protocols experimental support
Protocols can be bridged! le I mp Exa SAML 2.0 IdP SimpleSAMLphp bridge acting as OpenID Provider and SAML 2.0 SP
Protocols can be bridged! le II mp Exa SAML 2.0 SAML 1.1 SP IdP SimpleSAMLphp bridge acting as SAML 2.0 IdP and SAML 1.1 SP
Scalable from simple Apache 2 + PHP 5 simpleSAMLphp
Load balanced Load balanced Load balanced to not so Fail over memcac he 1C memcac he 2C memcac he 3C simple Fail over memcac he 1B memcac he 2B memcac he 3B with the memcache Fail over memcac he memcac he memcac he sessionhandler 1A 2A 3A Apache 2 Apache 2 Apache 2 Apache 2 PHP 5 PHP 5 PHP 5 PHP 5 simpleSAML simpleSAML simpleSAML simpleSAML php php php php Load balan cer
Performance Last performance test on IdP: ~ 12.000 SAML logins per minute on one server instance Possible because of the lightweight design from the group up.
"Self-check" API • Santity-check API allows you to check if everything is "OK". • Can be connected to monitoring systems like NAGIOS. • Hooks for adding sanity check tests in external modules.
Statistics module
User consent
Fancy Robust Single Log-Out
IdP Discovery Service • Tabbed interface • Drop-down free • Incremental live search
Timed-out HTTP-POST Rescue SimpleSAMLphp rescues the user's data when session is timed out . The wiki AFAIK No other use-case software does. What will happen if save and you the sessio timed out n is ?
Easy log lookup with TrackID
more... http://rnd.feide.no/simplesamlphp

Recommended

Leverage Drupal, Shibboleth, and OpenSAML to Connect Federated Identity to th...
Leverage Drupal, Shibboleth, and OpenSAML to Connect Federated Identity to th...Leverage Drupal, Shibboleth, and OpenSAML to Connect Federated Identity to th...
Leverage Drupal, Shibboleth, and OpenSAML to Connect Federated Identity to th...Acquia
 
SimpleSAMLphp
SimpleSAMLphpSimpleSAMLphp
SimpleSAMLphpJaime Pérez Crespo
 
9800301 04 8080-8085_assembly_language_programming_manual_may81
9800301 04 8080-8085_assembly_language_programming_manual_may819800301 04 8080-8085_assembly_language_programming_manual_may81
9800301 04 8080-8085_assembly_language_programming_manual_may81satolina
 
In-depth look at the Flex compiler and HFCD
In-depth look at the Flex compiler and HFCDIn-depth look at the Flex compiler and HFCD
In-depth look at the Flex compiler and HFCDStop Coding
 
Intel 8080 8085 assembly language programming 1977 intel
Intel 8080 8085 assembly language programming 1977 intelIntel 8080 8085 assembly language programming 1977 intel
Intel 8080 8085 assembly language programming 1977 intelOmar Alkinani
 
Project Basecamp: News From Camp 4
Project Basecamp: News From Camp 4Project Basecamp: News From Camp 4
Project Basecamp: News From Camp 4Digital Bond
 
MPI n OpenMP
MPI n OpenMPMPI n OpenMP
MPI n OpenMPSurinder Kaur
 
Distributed and concurrent programming with RabbitMQ and EventMachine Rails U...
Distributed and concurrent programming with RabbitMQ and EventMachine Rails U...Distributed and concurrent programming with RabbitMQ and EventMachine Rails U...
Distributed and concurrent programming with RabbitMQ and EventMachine Rails U...Paolo Negri
 

Recommended

Leverage Drupal, Shibboleth, and OpenSAML to Connect Federated Identity to th...
Leverage Drupal, Shibboleth, and OpenSAML to Connect Federated Identity to th...Leverage Drupal, Shibboleth, and OpenSAML to Connect Federated Identity to th...
Leverage Drupal, Shibboleth, and OpenSAML to Connect Federated Identity to th...Acquia
 
SimpleSAMLphp
SimpleSAMLphpSimpleSAMLphp
SimpleSAMLphpJaime Pérez Crespo
 
9800301 04 8080-8085_assembly_language_programming_manual_may81
9800301 04 8080-8085_assembly_language_programming_manual_may819800301 04 8080-8085_assembly_language_programming_manual_may81
9800301 04 8080-8085_assembly_language_programming_manual_may81satolina
 
In-depth look at the Flex compiler and HFCD
In-depth look at the Flex compiler and HFCDIn-depth look at the Flex compiler and HFCD
In-depth look at the Flex compiler and HFCDStop Coding
 
Intel 8080 8085 assembly language programming 1977 intel
Intel 8080 8085 assembly language programming 1977 intelIntel 8080 8085 assembly language programming 1977 intel
Intel 8080 8085 assembly language programming 1977 intelOmar Alkinani
 
Project Basecamp: News From Camp 4
Project Basecamp: News From Camp 4Project Basecamp: News From Camp 4
Project Basecamp: News From Camp 4Digital Bond
 
MPI n OpenMP
MPI n OpenMPMPI n OpenMP
MPI n OpenMPSurinder Kaur
 
Distributed and concurrent programming with RabbitMQ and EventMachine Rails U...
Distributed and concurrent programming with RabbitMQ and EventMachine Rails U...Distributed and concurrent programming with RabbitMQ and EventMachine Rails U...
Distributed and concurrent programming with RabbitMQ and EventMachine Rails U...Paolo Negri
 
Ncm2010 ruo ando
Ncm2010 ruo andoNcm2010 ruo ando
Ncm2010 ruo andoRuo Ando
 
BASICPIC.pdf
BASICPIC.pdfBASICPIC.pdf
BASICPIC.pdfasconindia
 
BASICPIC.pdf
BASICPIC.pdfBASICPIC.pdf
BASICPIC.pdfPablo Narvaez
 
MikroBasic
MikroBasicMikroBasic
MikroBasicbutest
 
MikroBasic
MikroBasicMikroBasic
MikroBasicbutest
 
MikroBasic
MikroBasicMikroBasic
MikroBasicbutest
 
MikroBasic
MikroBasicMikroBasic
MikroBasicbutest
 
MikroBasic
MikroBasicMikroBasic
MikroBasicbutest
 
Bootloader and MMU (english)
Bootloader and MMU (english)Bootloader and MMU (english)
Bootloader and MMU (english)Sneeker Yeh
 
/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for Windows
/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for Windows/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for Windows
/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for WindowsFord AntiTrust
 
It's game time
It's game timeIt's game time
It's game timeMatt Jenkins
 
Matlab introduction lecture 1
Matlab introduction lecture 1Matlab introduction lecture 1
Matlab introduction lecture 1Mohamed Awni
 
BITTU PPT.pptx
BITTU PPT.pptxBITTU PPT.pptx
BITTU PPT.pptxRohitKumar639388
 
Assembler design option
Assembler design optionAssembler design option
Assembler design optionMohd Arif
 
8051 microcontroller
8051 microcontroller8051 microcontroller
8051 microcontrollerShubhrika Sehgal
 
Question paper with solution the 8051 microcontroller based embedded systems...
Question paper with solution the 8051 microcontroller based embedded systems...Question paper with solution the 8051 microcontroller based embedded systems...
Question paper with solution the 8051 microcontroller based embedded systems...manishpatel_79
 
openmp
openmpopenmp
openmpNeel Bhad
 
Gerenciamento de Memória(2)
Gerenciamento de Memória(2)Gerenciamento de Memória(2)
Gerenciamento de Memória(2)elliando dias
 
Webinar slides: Replication Topology Changes for MySQL and MariaDB
Webinar slides: Replication Topology Changes for MySQL and MariaDBWebinar slides: Replication Topology Changes for MySQL and MariaDB
Webinar slides: Replication Topology Changes for MySQL and MariaDBSeveralnines
 
Road to sbt 1.0 paved with server
Road to sbt 1.0 paved with serverRoad to sbt 1.0 paved with server
Road to sbt 1.0 paved with serverEugene Yokota
 
OpenID Connect Federation
OpenID Connect FederationOpenID Connect Federation
OpenID Connect FederationAndreas Åkre Solberg
 
Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017Andreas Åkre Solberg
 

More Related Content

Similar to About SimpleSAMLphp 2009

Ncm2010 ruo ando
Ncm2010 ruo andoNcm2010 ruo ando
Ncm2010 ruo andoRuo Ando
 
MikroBasic
MikroBasicMikroBasic
MikroBasicbutest
 
MikroBasic
MikroBasicMikroBasic
MikroBasicbutest
 
MikroBasic
MikroBasicMikroBasic
MikroBasicbutest
 
MikroBasic
MikroBasicMikroBasic
MikroBasicbutest
 
MikroBasic
MikroBasicMikroBasic
MikroBasicbutest
 
Bootloader and MMU (english)
Bootloader and MMU (english)Bootloader and MMU (english)
Bootloader and MMU (english)Sneeker Yeh
 
/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for Windows
/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for Windows/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for Windows
/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for WindowsFord AntiTrust
 
Matlab introduction lecture 1
Matlab introduction lecture 1Matlab introduction lecture 1
Matlab introduction lecture 1Mohamed Awni
 
Assembler design option
Assembler design optionAssembler design option
Assembler design optionMohd Arif
 
Question paper with solution the 8051 microcontroller based embedded systems...
Question paper with solution the 8051 microcontroller based embedded systems...Question paper with solution the 8051 microcontroller based embedded systems...
Question paper with solution the 8051 microcontroller based embedded systems...manishpatel_79
 
Gerenciamento de Memória(2)
Gerenciamento de Memória(2)Gerenciamento de Memória(2)
Gerenciamento de Memória(2)elliando dias
 
Webinar slides: Replication Topology Changes for MySQL and MariaDB
Webinar slides: Replication Topology Changes for MySQL and MariaDBWebinar slides: Replication Topology Changes for MySQL and MariaDB
Webinar slides: Replication Topology Changes for MySQL and MariaDBSeveralnines
 
Road to sbt 1.0 paved with server
Road to sbt 1.0 paved with serverRoad to sbt 1.0 paved with server
Road to sbt 1.0 paved with serverEugene Yokota
 

Similar to About SimpleSAMLphp 2009 (20)

Ncm2010 ruo ando
Ncm2010 ruo andoNcm2010 ruo ando
Ncm2010 ruo ando
 
BASICPIC.pdf
BASICPIC.pdfBASICPIC.pdf
BASICPIC.pdf
 
BASICPIC.pdf
BASICPIC.pdfBASICPIC.pdf
BASICPIC.pdf
 
MikroBasic
MikroBasicMikroBasic
MikroBasic
 
MikroBasic
MikroBasicMikroBasic
MikroBasic
 
MikroBasic
MikroBasicMikroBasic
MikroBasic
 
MikroBasic
MikroBasicMikroBasic
MikroBasic
 
MikroBasic
MikroBasicMikroBasic
MikroBasic
 
Bootloader and MMU (english)
Bootloader and MMU (english)Bootloader and MMU (english)
Bootloader and MMU (english)
 
/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for Windows
/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for Windows/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for Windows
/* pOrt80BKK */ - PHP Day - PHP Performance with APC + Memcached for Windows
 
It's game time
It's game timeIt's game time
It's game time
 
Matlab introduction lecture 1
Matlab introduction lecture 1Matlab introduction lecture 1
Matlab introduction lecture 1
 
BITTU PPT.pptx
BITTU PPT.pptxBITTU PPT.pptx
BITTU PPT.pptx
 
Assembler design option
Assembler design optionAssembler design option
Assembler design option
 
8051 microcontroller
8051 microcontroller8051 microcontroller
8051 microcontroller
 
Question paper with solution the 8051 microcontroller based embedded systems...
Question paper with solution the 8051 microcontroller based embedded systems...Question paper with solution the 8051 microcontroller based embedded systems...
Question paper with solution the 8051 microcontroller based embedded systems...
 
openmp
openmpopenmp
openmp
 
Gerenciamento de Memória(2)
Gerenciamento de Memória(2)Gerenciamento de Memória(2)
Gerenciamento de Memória(2)
 
Webinar slides: Replication Topology Changes for MySQL and MariaDB
Webinar slides: Replication Topology Changes for MySQL and MariaDBWebinar slides: Replication Topology Changes for MySQL and MariaDB
Webinar slides: Replication Topology Changes for MySQL and MariaDB
 
Road to sbt 1.0 paved with server
Road to sbt 1.0 paved with serverRoad to sbt 1.0 paved with server
Road to sbt 1.0 paved with server
 

More from Andreas Åkre Solberg

Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017Andreas Åkre Solberg
 
Dataporten intro (workshop with Difi)
Dataporten intro (workshop with Difi)Dataporten intro (workshop with Difi)
Dataporten intro (workshop with Difi)Andreas Åkre Solberg
 
UNINETT Feide Connect (Feide fagdag)
UNINETT Feide Connect (Feide fagdag)UNINETT Feide Connect (Feide fagdag)
UNINETT Feide Connect (Feide fagdag)Andreas Åkre Solberg
 
Connect (UNINETT-konferansen, Tromsø)
Connect (UNINETT-konferansen, Tromsø)Connect (UNINETT-konferansen, Tromsø)
Connect (UNINETT-konferansen, Tromsø)Andreas Åkre Solberg
 
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyenNorsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyenAndreas Åkre Solberg
 
Feide Connect – Standard Norge February 2015
Feide Connect – Standard Norge February 2015Feide Connect – Standard Norge February 2015
Feide Connect – Standard Norge February 2015Andreas Åkre Solberg
 

More from Andreas Åkre Solberg (20)

OpenID Connect Federation
OpenID Connect FederationOpenID Connect Federation
OpenID Connect Federation
 
Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017Dataporten for grunnopplæringa - Workshop September 2017
Dataporten for grunnopplæringa - Workshop September 2017
 
Dataporten Workshop
Dataporten WorkshopDataporten Workshop
Dataporten Workshop
 
Dataporten
DataportenDataporten
Dataporten
 
Dataporten for Sigma2, Hell
Dataporten for Sigma2, HellDataporten for Sigma2, Hell
Dataporten for Sigma2, Hell
 
Dataporten intro (workshop with Difi)
Dataporten intro (workshop with Difi)Dataporten intro (workshop with Difi)
Dataporten intro (workshop with Difi)
 
UNINETT Feide Connect (Feide fagdag)
UNINETT Feide Connect (Feide fagdag)UNINETT Feide Connect (Feide fagdag)
UNINETT Feide Connect (Feide fagdag)
 
Connect (UNINETT-konferansen, Tromsø)
Connect (UNINETT-konferansen, Tromsø)Connect (UNINETT-konferansen, Tromsø)
Connect (UNINETT-konferansen, Tromsø)
 
Connect (USIT)
Connect (USIT)Connect (USIT)
Connect (USIT)
 
Connect (Feide fagdag, Gardemoen)
Connect (Feide fagdag, Gardemoen)Connect (Feide fagdag, Gardemoen)
Connect (Feide fagdag, Gardemoen)
 
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyenNorsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
Norsk UH-sektor og økosystemer for identitet og integrasjoner i skyen
 
Feide Connect – Standard Norge February 2015
Feide Connect – Standard Norge February 2015Feide Connect – Standard Norge February 2015
Feide Connect – Standard Norge February 2015
 
Feide Connect SUHS 2014
Feide Connect SUHS 2014Feide Connect SUHS 2014
Feide Connect SUHS 2014
 
Feide Connect (NOKIOS 2014)
Feide Connect (NOKIOS 2014)Feide Connect (NOKIOS 2014)
Feide Connect (NOKIOS 2014)
 
Feide Connect TNC2014
Feide Connect TNC2014Feide Connect TNC2014
Feide Connect TNC2014
 
Feide connect tnc2014
Feide connect tnc2014Feide connect tnc2014
Feide connect tnc2014
 
SCIM and VOOT
SCIM and VOOTSCIM and VOOT
SCIM and VOOT
 
Feide Connect (IoU Fagdag)
Feide Connect (IoU Fagdag)Feide Connect (IoU Fagdag)
Feide Connect (IoU Fagdag)
 
Feide Connect
Feide ConnectFeide Connect
Feide Connect
 
Feide Connect
Feide ConnectFeide Connect
Feide Connect
 

Recently uploaded

CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfRankYa
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Manik S Magar
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningLars Bell
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clashcharlottematthew16
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 

Recently uploaded (20)

CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easy
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptx
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdf
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine Tuning
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clash
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 

About SimpleSAMLphp 2009

  • 1. Generic presentation Updated: November 2009 simpleSAMLphp Andreas Åkre Solberg andreas.solberg@uninett.no
  • 2. What is it? Software with focus on SAML (both SP and IdP), but with support for multiple protocols.
  • 3. Widespread • Wide adoption, and interest is increasing… • Mostly Europe and US. Both commercial / educational. • 350 users on mailing-list. • Translated into 20 languages • IDDY-award in California 2008. Visitors of project homepage demography ›
  • 4. Project structure Project leader 1 Main developers 2 Secondary commiters ~5 Contributors ~ 15
  • 5. Why people like it • easy to install and maintain just drop a folder to install :) • aut • easy to extend hent • pro ication s cess o ing fi urces • fully modularized • the lt mes ers • hoo ks • very helpful open source community.
  • 6. Version 1.5 (October 2009) with improved interoperability with Shibboleth • automated shibboleth-style metadata consumption • Improved experience with combined SAML 1.1 and SAML 2.0 envir. • Improved SAML 1.1 + 2.0 integrated IdP Discovery Service. • SAML 1.1 Artifact binding • encrypted NameIDs
  • 7. Multiple protocols • SAML 2.X SP • SAML 2.X IdP • Shib 1.3 SP • Shib 1.3 IdP • OpenID Provider • OpenID Consumer • OAuth • WS-Fed / ADFS •!Radius client • Infocard •!LDAP • Twitter auth • CAS • SQL • Facebook auth •!YubiKey *) some protocols experimental support
  • 8. Protocols can be bridged! le I mp Exa SAML 2.0 IdP SimpleSAMLphp bridge acting as OpenID Provider and SAML 2.0 SP
  • 9. Protocols can be bridged! le II mp Exa SAML 2.0 SAML 1.1 SP IdP SimpleSAMLphp bridge acting as SAML 2.0 IdP and SAML 1.1 SP
  • 10. Scalable from simple Apache 2 + PHP 5 simpleSAMLphp
  • 11. Load balanced Load balanced Load balanced to not so Fail over memcac he 1C memcac he 2C memcac he 3C simple Fail over memcac he 1B memcac he 2B memcac he 3B with the memcache Fail over memcac he memcac he memcac he sessionhandler 1A 2A 3A Apache 2 Apache 2 Apache 2 Apache 2 PHP 5 PHP 5 PHP 5 PHP 5 simpleSAML simpleSAML simpleSAML simpleSAML php php php php Load balan cer
  • 12. Performance Last performance test on IdP: ~ 12.000 SAML logins per minute on one server instance Possible because of the lightweight design from the group up.
  • 13. "Self-check" API • Santity-check API allows you to check if everything is "OK". • Can be connected to monitoring systems like NAGIOS. • Hooks for adding sanity check tests in external modules.
  • 17. IdP Discovery Service • Tabbed interface • Drop-down free • Incremental live search
  • 18. Timed-out HTTP-POST Rescue SimpleSAMLphp rescues the user's data when session is timed out . The wiki AFAIK No other use-case software does. What will happen if save and you the sessio timed out n is ?