OW2con'14 - LemonLDAP::NG 1.4 New features, Linagora

Tags:

Preview:

Click to see full reader

DESCRIPTION

LemonLDAP::NG is a Free Software dédicated to SSO and access control, used in numerous french administrations and other organizations. Developped since 10 years, it evolves constantly bringing new features at each version. The 1.3 version has been exposed during the last OW2 con'. We will present the 1.4 version that was released in July 2014, with plenty of new features like session cache sharing, bootstrap skin, captcha cluster mode, Nginx support trough LUA Handler and self register service.

Citation preview

David COUTADEUR Clément OUDOTdcoutadeur@linagora.com coudot@linagora.com

What's new in LemonLDAP::NG 1.4?

mailto:dcoutadeur@linagora.com
mailto:coudot@linagora.com

2

About us

3

LemonLDAP::NG Presentation

4

Some history

2003 2006 2010 2014

Project creation

NG version

SAMLCAS

OpenID

1.4 release

5

Single Sign On

User

Web Application

WebSSO Portal

1

2

3

6

Access Control

UserWeb

Application

1

SSO

2

Authorization

3

7

Components

CommonCommon

ManagerManager HandlerHandler

PortalPortal

Administration interface

User interactions

Applications protection

8

Authentication backends

LDAPLDAPADAD

ApacheApache SAMLSAML

CASCAS RadiusRadius OpenIDOpenID

WebIDWebID

BrowserBrowserIDID

DBIDBI

YubikeyYubikey

9

Self Service

Password Password changechange

Password Password resetreset

Login Login historyhistory

10

Identity protocols gateway

SAMLSAMLCASCAS

OpenIDOpenID

11

New features of version 1.4

12

Bootstrap Skin

13

Self register service

Fill a form

First nameLast nameEmail

Validate by clicking link in email

Receive login and password in email

14

use Mouse

Configuration Configuration attributesattributes SessionsSessions

HandlerHandler CaptchaCaptcha

Cluster modeCluster mode

15

Session identifiers

MD5SHA256

8c7fef2b3820ecdea49614be7b769c62

9be0bab50d1c14b51264a7194fc2517cb25a5788e860cf672823dff434348dba

16

SAML IDP SSO initiated

11

22

IdentityProvider

ServiceProvider

http://auth.example.com/saml/singleSignOn?IDPInitiated=1&spConfKey=myserviceprovider

http://auth.example.com/saml/singleSignOn?IDPInitiated=1&spConfKey=myserviceprovider

17

Nginx Support

LUA Perl

Work in progressHandler available on GitHub

18

Conclusion

19

Stay tunedhttp://lemonldap-ng.org

IRC #lemonldap-ng@freenode

http://mail.ow2.org/wws/

@lemonldapng

http://www.ohloh.net/p/lemonldap-ng

http://lemonldap-ng.org/
http://mail.ow2.org/wws/
http://www.ohloh.net/p/lemonldap-ng

20

Thanks

OW2 Staff LemonLDAP::NG team LINAGORA

21

Questions?

22

Thanks for your attention

Recommended

Linagora Breakfast, Acquia
Documents
WebSSO and Access Management with LemonLDAP::NG
Technology
Séminaire Sécurité Linagora 2008
Technology
OW2Con 2011: Open Source Innovation Factory
Technology
LemonLDAP::NG 1.2
Technology
Présentation LINAGORA - OBM au @S2LQ
Technology
Séminaire LinID LINAGORA - juin 2009
Technology
For Linagora Openldap 5
Documents
Innovation and Research, OW2con'12, Paris
Technology
Automatizing SpagoBI, OW2con'16, Paris
Technology
LemonLDAP::NG 2.0. OW2con'15, November 17, Paris
Technology
OW2con'14 microsoft
Technology
Séminaire Sécurité Linagora mai 2009
Technology
Présentation des logiciels libres LINAGORA
Technology
Milton Webdav Presentation for Linagora
Technology
Open Source Software Assurance by Linagora
Technology
Drupagora linagora-20111110
Technology
OW2con'14 -
Technology
Drupal 7 : un CMS polymorphe recommandé par Linagora
Technology
RMLL 2014 - LemonLDAP::NG - What's new under the SSOn
Technology