27 Jun 2017, 09:00 - 18:00
This one-day course is an introduction to the next generation identity management and authorisation protocols and their constituent components (OAuth2/JW*/OIDC/UMA).
The second part of the programme includes a more practical look at relevant tools and libraries (in Python and/or Java).
Who is it for?: Developers of resources for web and mobile will especially benefit from this course.
Trainers: Andrea Biancini, Davide Vaghetti
Costs: AARC2 project participants can claim travel and accommodation expenses on the project budget, as well as person-hours for time spent.
! Ask your task or activity leader for authorisation!
Bring your own laptop and be familiar (at least) with python development environment.
The event is organised in collaboration with GARR, the Italian National Research and Education Network.
|09:00 - 09:30||
WELCOME & REGISTRATION
|09:30 - 11:00||
Theoretical session: OIDC overview, OAuth2 overview ("OpenID Connect 1.0 is a simple identity layer on top of the OAuth 2.0 protocol"), OAuth2 authorisation flows, JSON Web Token (JWT) overview
|11:00 - 11:30||
|11:30 - 13:00||
Theoretical session: OIDC authentication flows, Outline of UMA and OIDC Federation
|13:00 - 14:00||
|14:00 - 16:00||
Hands-on session: Implementing and OIDC provider; implementing an OIDC RP
|16:00 - 16:30||
|16:30 - 18:00||
Hands-on session: Review the python OP/RP implementations; Implementing an RP in php, java and through Apache & Nginx modules libraries; Modules configuration in Apache and Nginx