Following on from my recent posting of a Federation Manager demo showing Liberty ID-FF federated single sign-on, here is a demo of Access Manager and Federation Manager I showed at a Liberty ‘eGovernment Forum’ in Dublin back in April.
This demo shows an employee of the ‘Department of Health and Children’ logging into the department’s portal, visiting another government department, the ‘Stationery Office’, to obtain an official report, and having the Stationery Office query their ‘home’ department for a mailing address via the Liberty Identity Web Services Framework (ID-WSF).
This is a very simple demo, but it demonstrates some key aspects of Liberty ID-WSF:
- ‘Bootstrap’ from federated web single sign-on (ID-FF) to web services (ID-WSF).
- Use of the Discovery Service to locate a web service for a given user. (This takes place ‘under the covers’ – the bootstrap provides the service provider, in this example the Stationery Office, with the location of the Discovery Service and a credential to use on behalf of the employee. The service provider queries the Discovery Service for the location of the Personal Profile service).
- Use of the Personal Profile Service to retrieve a user’s profile attributes.
- Use of the RedirectRequest protocol (specified in the Liberty ID-WSF Interaction Service Specification) to allow the employee’s ‘home’ department to prompt for confirmation that address information is to be released to the Stationery Office.
Just click the screenshot below to view the demo…
Click to view Flash presentation
UPDATED 11/21/2005 – corrected Interaction Service to RedirectRequest protocol – see comments