4. Identity Management
● IdM is concerned with managing user data
on systems + applications.
● Involves User attributes, roles, resources,
entitlements, etc.
● Who has access to What, When, How, and
Why?
5. Introducing Apache Syncope
● Apache Syncope is an Open Source
system for managing digital identities in
enterprise environments, implemented in
JEE technology and released under
Apache 2.0 license.
12. REST API
● Core functionality exposed via a REST API
● For example:
GET /users.json
[{"attributes":[
{"schema":"fullname","values":["white"], "readonly":false},
{"schema":"loginDate","values":["2009-05-26","2010-05-26"],
...
13. Console
● Web management
interface.
● Uses Apache
Wicket
● Communicates with
the core via REST.
15. Apache Syncope 1.1.0
● Role provisioning.
● OSGi support.
● Upgrade to Apache Wicket 6.
● Rest API Upgrade.
● Introducing Apache CXF WS Stack
16. REST API upgrade
● 1.0.X REST API redesigned to apply
RESTful best practices, e.g.
● use HTTP operations instead of URL
encoded operation names
● GET does not modify any object
● CREATE operations return location URL in
header for newly created object
17. Apache CXF
● One of the leading web service
frameworks.
● Supports JAX-WS and JAX-RS.
● Protocols: SOAP, XML/HTTP, RESTful
HTTP, CORBA, etc.
● Transports: HTTP, JMS, JBI, etc.
● Comprehensive WS standards support.
18. Integrating CXF with Syncope
● New REST API powered by CXF
● Using JAXB + JAX-RS annotations instead
of Spring annotations.
● Full power of CXF stack now available to
Syncope...
STS? SAML?
19. Apache Syncope Demo – part II
Authenticate Authentication
User Response
“double-it”
“double-it response”
20. Further Information + Questions
● http://syncope.apache.org/
● http://cxf.apache.org/
● http://coheigea.blogspot.com