Here's the chat log:
Jasig Calliflower Admin / Tue, Oct 23, at 03:03 PM https://wiki.jasig.org/display/CAS/Second+Level+Of+Assurance+Specification Jasig Calliflower Admin / Tue, Oct 23, at 03:03 PM https://wiki.jasig.org/display/CAS/Example+LOA+Use+Cases Jasig Calliflower Admin / Tue, Oct 23, at 03:04 PM https://wiki.jasig.org/display/CAS/Level+Of+Assurance+-+Head+document Jasig Calliflower Admin / Tue, Oct 23, at 03:04 PM https://wiki.jasig.org/display/CAS/First+Level+Of+Assurance+Specification+-+Discussions Andrew Petro / Tue, Oct 23, at 03:24 PM Marvin, I hear you on the SAML2 support idea. I wonder if there's a nearer opportunity in at least taking care that the CAS LOA solution can be integrated well with Shibboleth IdP LOA considerations regarding AuthenticationContext. That is, that a compelling CAS-Shib integration can be built that fulfills SAML LOA requirements end-to-end. Something to get right, but I think a lesser lift than is implementing SAML2 directly in CAS. Andrew Petro / Tue, Oct 23, at 03:32 PM AuthenticationHandler returns Authentication object on success Andrew Petro / Tue, Oct 23, at 03:32 PM thereby able to set metadata on it right then. Andrew Petro / Tue, Oct 23, at 03:33 PM Currently: TGT has one Authentication; future: TGT has one or more Authentications Nathan Kopp / Tue, Oct 23, at 03:38 PM AuthenticationPolicyLine -> CredentialRequirement(name) -> CredentialsGatherer -> InteractionManager -> AuthenticationHandler Andrew Petro / Tue, Oct 23, at 03:48 PM Potential in Spring Web Flow per LOA? per something? Delegate to a Spring Web Flow? Andrew Petro / Tue, Oct 23, at 03:49 PM missing some of the promise of modular login flow because of monolithic login flow? Would it be better to refactor to make the existing login flow itself use sub-flows? Andrew Petro / Tue, Oct 23, at 03:49 PM LOA without requiring deployers to touch Spring Web Flow? (built-in ability to delegate to a sub-flow, additional LOA plugins/authentication mechanism plugins drop in the necessary Spring Web Flow sub-flow? Andrew Petro / Tue, Oct 23, at 03:51 PM Goal should be to make a Marvin-style LOA project more feasible and less difficult :) Andrew Petro / Tue, Oct 23, at 03:52 PM Active Directory for basic LOA, and Active Directory + DuoSecurity as the higher LOA, as most common configuration? Andrew Petro / Tue, Oct 23, at 03:53 PM (This meeting being recorded? We going to wish it was recorded?) Andrew Petro / Tue, Oct 23, at 03:56 PM specifying by class name not sufficient, since AuthenticationHandler class multiply instantiable with different configuration. need to reference by name rather than by classname. Andrew Petro / Tue, Oct 23, at 03:59 PM I'm going to have to drop off for another call; this has been interesting; sounds like progress; thanks everyone. Jasig Calliflower Admin / Tue, Oct 23, at 04:31 PM Andrew, I wish I'd seen your note about recording earlier. I do wish we had recorded it. :( On Mon, Oct 29, 2012 at 10:48 AM, Marvin Addison <[email protected]> wrote: >> I can't seem to see this conference. Is it restricted? > > It's public but maybe that link is an authenticated view or otherwise > restricted to the Jasig admin account. The following works for me after I > jump through the registration hoops: > > http://bit.ly/Si2QLc > > Let me know whether you can get to call chat log. > > M > > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-dev > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
