Action Items from 2011 Advance CAMP
Note: Follow-up is planned on several action items, as indicated in the Status column. This follow-up will take the form of gentle inquiries, as opposed to regularly scheduled calls and check-ins.
# | Session at Advance CAMP | Description | Lead | Status | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | Rewriting IAM Policies | Establish the TEP (Tools and Effective Practices) wiki space as the home for policy and governance discussions | Michael Pelikan |
| ||||||||||
ECP | ScottK will continue work with the Condor group on the ECP-enabled file mover | ScottK | Tom will do some follow-up with leads on the ECP work | |||||||||||
| ECP | Add links on the SHIB2/ECP wiki page that point to other pages where this nascent ECP interest group's activities can be described. Use those linked pages as a home on the web for ongoing discussions |
|
| ||||||||||
| ECP | Collaborate to deliver a Python ECP client module that returns a Python cookie-jar containing session cookies that allow your Python app to keep talking to the SP | Roland, ScottK |
| ||||||||||
| ECP | Work with Condor group on ECP-enabled file mover | ScottK |
| ||||||||||
| ECP | Refactor his HPC access via SAML solution to use the ECP approach | Arnie |
| ||||||||||
| ECP | Suggest to InCommon that they consider recommending that sites protect their ECP endpoint on the IdP with X.509 certs. Otherwise there will be as many varieties of protection as there are ECP endpoints. | ScottK (and others?) |
| ||||||||||
| ECP | Document other ECP clients and how you use them PAM/Shib | requested by Todd Picket |
| ||||||||||
| ECP | Create an ECP Reading list / tutorial | not assigned |
| ||||||||||
| Multiple Attribute Stores and Shib IdP | Create documentation on the use of attribute aggregation. Get input on the multi-datastore handling by the IdP. Big question is how to handle multiple data sources connected to an IdP. | Mike Wiseman & Steven Carmody | RL "Bob" will do some follow-up with leads | ||||||||||
| OAUTH | ACAMP Prog. Committee should encourage the Social ID working group to deal with these issues: | Social ID WG |
| ||||||||||
| Permissions Mgmt UX and UI | ACAMP Prog. Committee needs to encourage the MACE-paccman WG to address the items that emerged, including:
| MACE-paccman |
| ||||||||||
| InCommon Silver Certification | Facilitate discovery of InCommon Silver work and sharing community work -- facilitate outreach on community outreach and outcomes
| Ann West |
| ||||||||||
| Making Services Discoverable to Users | ACAMP Prog. Committee needs to follow up with Michael and Roland to discuss concrete action items. (Establish standards for storing info? Work with SWITCH on this? Establish a service catalog? ) | MichaelG and Roland | RL "Bob" will do some follow-up with leads | ||||||||||
| Identify Gaps in IdM | Ensure that a secure environment exists to have discussions about vendor products. |
|
| ||||||||||
| Identify Gaps in IdM | Berkeley and FIFER work together to develop some documentation for the community. |
|
| ||||||||||
| Identify Gaps in IdM | Identify people who can answer people about different IdM systems. ( Use cases, user storeis are more useful than features in a grid. ) |
|
| ||||||||||
| Social Identities in R&E | Migrate from "OPENID" wiki space to "Social Identity" wiki space | SteveO |
| ||||||||||
| Social Identities in R&E | Create a listing of what people are doing and track what the standards are in the higher ed environment | Steven and the Social ID working group |
| ||||||||||
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="a77123132c3656dd-32b0f61b-40dd4ba2-82cf9c25-3bbc875985da03b7e26bb198"><ac:plain-text-body><![CDATA[ |
| LDAP Options, SubTrees, and Composite Attributes for Identity | Send writeup of issue statement for "eP[Scoped]PAeP" | Todd Piket |
| ]]></ac:plain-text-body></ac:structured-macro> | ||||||||
| LDAP Options, SubTrees, and Composite Attributes for Identity | Ask Rob Carter for permission to use the 389DS plugin that he & Michael Gettes wrote to handle Kerberos "the right way". | Delegate this to MACE-Dir |
|
...