Versions Compared

Old Version 3

changes.mady.by.user Francesco Chicchiriccò

Saved on

compared with

New Version 4

changes.mady.by.user Francesco Chicchiriccò

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Features

  1. 3rd party apps authentication, SSO and authorization:
    1. Act as SAML 2.0 Identity Provider
      1. Integrate via mod_shib (Apache HTTPd),nginx-http-shibboleth (Nginx), iis7_shib.dll (IIS)
    2. Act as OpenID Connect 1.0 Provider, gain certification
      1. integrate via mod_auth_openidc (Apache HTTPd), nginx-openid-connect (Nginx), Microsoft.AspNetCore.Authentication.OpenIdConnect .Net package (IIS)
    3. Implement the latest version available of the CAS protocol
      1. integrate via the various CAS clients available: Apache HTTPd, Nginx, Java, .NET, PHP, Perl, Python, Ruby
  2. Standard set of authentication modules, and API to extend / create new ones:
    1. username / password with different backends (DBMS, LDAP, ...)
    2. TLS client certificate
    3. Time-based One-time password
    4. SAML 2.0 SP
    5. OpenID Connect 1.0 Client
    6. Radius
    7. U2F
    8. WebAuthn
  3. Authentication chains by combining more authentication modules similar to Linux's PAM (required, sufficient, requisite, ...)
    1. Step-up authentication
    2. Multi-factor authentication

Reference projects and products

sources:

  • OpenSSO / OpenAM
  • CAS
  • Apache Fortress
  • Apache CXF Fediz
  • Keycloack

Reference topics

...

  • Enterprise Single SignOn
  • API gateway
  • mobile
  • Physical Access Management / IoT
  • eIDAS

...