Overview & Charter

Information Sharing

Facilitate information sharing among deployers and interested parties
Ask international community to participate
Examples: email lists, wiki pages, conference calls, trainings, workshops, and regular webinars
Presentations
1. 2017-11-21 – Alan Crosswell, "Columbia University - API Standards & Practices"
2. 2017-10-24 – Gregory Haverkamp, "OIDC and OAuth2 at LBNL" (PDF slides)

Work Products

Note: unless otherwise noted, this working group is focused on organizations in the Higher Education community.

Define scope
1. Review recommendations from the previous WG
2. Define scope for this WG
3. Consider campus-specific vs. federation-specific
Document use cases and lessons learned; develop best practices
1. Document uses of OIDC and OAuth2
2. Include what is and is not being used
3. Include software architectures in use
4. Document lessons learned
5. Develop recommended practices for deployment, configuration, and use
6. Include native mobile application authentication using SAML and OIDC/OAuth2
Standardization
1. Identify where increased standardization would benefit organizations
2. e.g., Map SAML Attributes to OIDC Claims
3. e.g. map eduPerson schema to OIDC Claims
4. e.g. develop profile similar to healthcare, iGov, financial
5. Facilitate related standardization
6. Work within existing standardization efforts
7. Or create new efforts
Multilateral Federation
1. Identify use cases that require multilateral federation support
2. Identify issues R&E federations must address to provide federated OIDC/OAuth2
3. Coordinate with GEANT OpenID Connect Federation task; includes Roland Hedberg's efforts
4. Coordinate with REFEDS OIDCre working group
5. Present to TAC and Internet2 T&I