OpenSSO is really taking off now – the number of participants continues to grow daily, we’ve had some really interesting discussions on the IRC channel, and folks around the world are writing their own how-to guides.
A couple of related questions have arisen recently: “How, exactly, are OpenSSO, Access Manager and Federation Manager related?” and “Can I get support on OpenSSO?”. These questions are almost answered in the OpenSSO FAQ – I’ll provide full answers here and push them into the FAQ for future reference.
OpenSSO is based on the Access Manager 7.0 codebase. There are some changes – for example, Access Manager contains some third party source code which we cannot redistribute – but we have worked to minimize these. The next versions of Federation Manager and Access Manager will be built from the OpenSSO source – just like Sun Java System Application Server is built from the Glassfish source. When we are happy that OpenSSO contains the features we want to release in the next AM/FM product release, we will branch the code and stabilise the release branch – all in public. New feature development can continue on the trunk, and fixes in the release branch will be copied to the trunk.
The short answer is “No.” Sun will support Access Manager and Federation Manager, which will, as noted above, be built from the OpenSSO source. However, we never say never. If there is sufficient demand, we will consider other support offerings.
The best place for follow-up discussion on these topics is the OpenSSO users mailing list (click here, login and scroll down to the email@example.com to subscribe), but feel free to leave comments here also.
Right now (Dec 8 2006), there are some deltas between AM 7.1 and OpenSSO. Due to schedules and logistics, work on AM 7.1 and OpenSSO proceeded in parallel. We are porting all AM 7.1 features and fixes to OpenSSO right now. For the most part, you can use AM 7.1 beta docs, but there are some differences:
- Policy Agent 2.2 for Web Services. To be added to OpenSSO.
- Java Management Extensions (JMX) support. To be added to OpenSSO.
- There is no federation console in the Open Federation build of OpenSSO, although all federation features are present and configurable from the command line. We are migrating the entire console from JATO (Sun’s previous, proprietary web application framework) to JavaServer Faces (JSF) – the federation console will be the first to move over.
- Numerous minor bug fixes and RFEs. To be added to OpenSSO.