Superpatterns Pat Patterson on the Cloud, Identity and Single Malt Scotch

14Mar/110

OpenAM, the Book

OpenAMRegular readers will know that I moved on from my role as community lead for OpenSSO some time ago, first to Huawei, then, a few months ago, to salesforce.com, blogging mostly at the Force.com blog. In that time, Forgerock have adopted OpenSSO, rechristening it OpenAM, and my ex-colleague Indira Thangasamy, Senior Quality Engineering Manager for OpenSSO, has been hard at work on his book on OpenAM.

Packt Publishing were kind enough to send me a review copy of OpenAM, and a very professional job it is. While I've not had a chance to read it in detail, what I have read so far has been excellent - Indira writes clearly, covering every aspect of OpenAM, from the basics of single sign-on to advanced topics such as integrating OpenAM with Google Apps and salesforce.com (yay!) and interacting with OpenAM via its RESTful identity web service interface.

I'll post a more thorough review once I'm done reading, suffice to say for now, if you're working with or evaluating OpenSSO/OpenAM, this should definitely be on your bookshelf! Click here to go to Packt's page for OpenAM.

Tagged as: , No Comments
12Apr/100

OpenSSO Brukergruppemøte

OpenSSO logoI had a note from the OpenSSO Meetup group the other day announcing an 'OpenSSO Brukergruppemøte' (OpenSSO user group meeting, according to Google Translate) in Oslo, Norway, on Thursday April 22, 2010. Norway has long been a hub of OpenSSO activity; it's great to see this continuing into OpenSSO's post-Sun existence. Go along and say "Hei!" to Jonathan and the rest of the ForgeRock guys from me!

Tagged as: , No Comments
22Feb/100

The ForgeRock OpenSSO Roadshow comes to North America!

ForgeRockMy friends at ForgeRock are bringing their series of OpenSSO user group meetings to the USA and Canada in late March/early April 2010. If you're interested in where they're taking open source identity, you should definitely take this opportunity to participate in one of the meetings - choose from New York (3/29), Toronto (3/30), Chicago (3/31) or San Francisco (4/1). I'll likely take the drive up 280 to the SF event on April 1st - see you there!

18Nov/093

OpenSSO User Group Meetings in Northern Europe – Nov/Dec 2009

SupportRockAlthough I'm no longer as active in the OpenSSO community as I once was, some things still catch my eye - for example, news of a series of user group meetings across Northern Europe in late November and early December. OpenSSO experts Allan Foster, Jonathan Scudder, Steve Ferris and Victor Ake (not a blogger amongst them!?!?) will be presenting on OpenSSO-related topics ranging from monitoring to the Fedlet, via entitlements and OAuth, in Helsinki, Stockholm, Copenhagen, Oslo, London and Brussels. Seems like SupportRock might be a name to watch in the world of OpenSSO...

15Sep/096

Easier Microsoft Active Directory Connectivity in OpenSSO Express 8

It's nice to see your RFE's implemented, and that's exactly what happened with OpenSSO issue # 4053: Active Directory configuration should use AD domain name rather than LDAP host/port. I saw Kohsuke's blog entry on More Active Directory integration in Java a little while ago and realized that we could take exactly the same approach in OpenSSO - prompt the admin for the Active Directory domain name rather than a host name and port number.

As Kohsuke mentions, this has a number of advantages - every AD admin knows the domain name, while many would likely have to go look up an individual host name, not to mention the LDAP port number. Since we use the domain name to look up an individual AD controller via DNS, it also means that the admin doesn't need to update OpenSSO's configuration as AD controllers come and go - OpenSSO will always get a valid host name from DNS.

So, when configuring OpenSSO Express 8, you can now just specify the AD domain name. As improvements go, this one is pretty small, but, as I think everyone agrees, the cumulative effect of all these little improvements in OpenSSO over the past two or three years has been HUGE...

Filed under: OpenSSO 6 Comments
11Sep/090

OpenSSO Tab Sweep – Sep 11 2009

Wow - it's been months since the last OpenSSO tab sweep. Anyway - here's a collection of the latest news from the world of OpenSSO:

Now I can close a few Firefox tabs and relax. Have a good weekend, everyone!

Filed under: OpenSSO No Comments
4Sep/092

OpenSSO Express Build 8 Released

A few weeks ago, I blogged about the impending release of OpenSSO Express Build 8; well, the OpenSSO engineers have been hard at work since then, and Express 8 was officially released yesterday.

Among the new features:

Much more detail in the OpenSSO Express 8 release notes. If you're wondering just what an 'Express Build' of OpenSSO is, the FAQ reveals all.

Download OpenSSO Express 8 now!

Filed under: OpenSSO 2 Comments
19Aug/090

OpenSSO, Jack Adams and me

At OSCON a few weeks ago, I spent a little time with OpenSolaris enthusiast Jack Adams (who doesn't seem to have his own page, but is often in the company of Bruno Souza and Deirdré Straughan), chatting about the basics of OpenSSO, single sign-on and federation. Luckily, it was all caught on video...

Filed under: OpenSSO No Comments
18Aug/092

Free Webinar: OpenSSO Express for Improved SSO

Daniel Raskin

Short notice, but if you have a spare hour tomorrow (Wednesday August 19th 2009) morning, Daniel Raskin, Sun's Chief Identity Strategist, and I will be presenting a webinar titled OpenSSO Express for Improved SSO. Join us at 10am PDT/1pm EDT/7pm CET for an update on the very latest features in OpenSSO Express 8 and beyond, such as mobile one-time passwords, the Fedlet for .Net, SalesForce.com integration and OAuth.

Filed under: OpenSSO 2 Comments
17Aug/092

Securing REST Web Services With OAuth

It's been a while since the last OpenSSO article at Sun Developer Network (the excellent, three-part, Troubleshooting OpenSSO with Firefox Add-Ons), but Malla and Rick have come up trumps with Securing REST Web Services With OAuth.

The article recasts the tried and true 'stock quote sample' as a RESTful web service with access protected by OAuth via OpenSSO and Jersey (Sun's open source implementation of JAX-RS, aka JSR 311). This is technology that has hitherto only been demonstrated in a demo at JavaOne 2009, so it's great to see it being successfully applied here.

Go read the article and discover how OpenSSO, Jersey and OAuth combine to secure RESTful web services!

Filed under: OpenSSO 2 Comments