The Javali presentation is a fairly deep dive into OpenSSO‘s brand new OAuth implementation, while the FISL slides are a higher level overview of identity services in OpenSSO. Grab one or both and mix yourself a caipirinha for the full Brazilian experience 🙂
Nice essay by John Mark on the art of building a community by NOT trying to build a community. Via Matt Asay
The plugin delegates your Grails app's authentication and authorization to OpenSSO, allowing single sign-on, URL policy enforcement, use of GSP security tags and programmatic security. Nice work by Warren Strange!
I just got confirmation that I’m on the bill at the Javali event next Tuesday, June 23, in Porto Alegre, Brazil. Javali, organized by SouJava and RSJUG, focuses on Java and free software, and is held immediately prior to FISL (on which more below). I’ll be doing quite a deep dive on the secure RESTful web services (via OAuth) work we have going on right now, which was first seen in public a few weeks ago at CommunityOne West and JavaOne. Javali will be at the Porto Alegre Serpro offices, Av. Augusto de Carvalho, 1133, from 09:00 to 20:00. I’m on at 18:30 in the Bill Joy Room, just before the pizza, assuming I make my 1 hour layover in Buenos Aires!
As I mentioned above, Javali precedes FISL, now in its 10th year, South America’s biggest open source conference with, according to the FISL home page, over 6000 attendees registered. I spoke at FISL 9.0 last April, and, I have to say, had a GREAT time. I saw an incredible display of energy and enthusiasm for all things open source, from kernel hacking to Ruby on Rails via every application of Java, although I think our evening expeditions in search of churrasco and caipirinhas probably also contributed to my positive recollections 🙂
My session this year, ‘Open Source Identity Services with OpenSSO’, on Friday June 26 at 09:00 in room 40T, looks at the three different approaches we take to identity services in OpenSSO – insulating applications from identity via container plugins, support for standards such as SAML, and lightweight SOAP and REST for interacting directly with OpenSSO. I’ll be covering the secure RESTful web services demo again, but it will be a much higher level view than the Javali presentation.
So – probably not enough notice for anyone to book a trip to Brazil, but, if you’re going to be there anyway, drop in one one or both sessions and say “Hi”! And bring the cachaça! 🙂
UPDATE – slides posted.
If you’re in the Chicago area next week you might be interested in attending the Chicago Java Users Group (CJUG) meeting on Tuesday (June 16 2009) – Kiran Ramineni, Principal at Ramp Info, will be presenting on OpenSSO and Identity Federation. The event starts at 6pm in the Lewis Towers Ballroom, Beane Hall at Loyola University of Chicago, and is free to CJUG members and first time guests. Sounds like a bargain to me, so get yourself down there next Tuesday night and then leave a comment here to let us know how it went!
Among the OpenSSO-related news items that popped up while I had my head down over the past few weeks, I noticed the Google Blog entry and Valeo press release concerning the global industrial group’s Google Apps deployment – 30,000 Valeo employees now have access to a new communication and collaborative working platform based on Google Apps Premier Edition and supported by Capgemini, one of the largest enterprise deployments of Google Apps to date.
It’s not mentioned in either story, but, if you a regular reader of Superpatterns, you’ll already know that Capgemini deployed OpenSSO at Valeo to handle single sign-on, allowing Valeo employees to access their email at Google via their Valeo credentials, without having to manage a separate Google username/password.
If you’re looking at Google Apps, click here to download the ‘starter kit’ we recently produced, which explains exactly how to set up single sign-on to Google Apps using OpenSSO.
Wow – is it really over a month since my last blog entry? I guess that’s what happens when you get your head down into a project – in this case, building a demo for CommunityOne West and JavaOne 2009 to show off the latest OpenSSO features.
The demo brought together a number of existing Java technologies – the Java Persistence API (JPA), the Jersey implementation of JAX-RS (aka JSR 311) on both the client and server, and JavaFX – with some new aspects of OpenSSO – fine-grained authorization (aka entitlements), OAuth protocol support, and a JDBC data store. Briefly, the demo centered on a cellphone account management system delivered as a JavaFX rich Internet application (RIA) client and a (more or less) RESTful web service back-end, communication between them secured by OAuth.
I’ll be uploading source code for the demo client and server apps to the OpenSSO project in the next few days, as well as documenting how to bring up the demo environment. Watch this space for updates!