[Freeipa-devel] [rfc-dist] RFC 7642 on System for Cross-domain Identity Management (SCIM)
Martin Kosek
mkosek at redhat.com
Wed Sep 30 11:41:12 UTC 2015
Thanks for sharing. Just for the record, there was a lot of SCIM related
presentations at the latest LDAPCon where FreeIPA was present as well:
http://lanyrd.com/2013/ldapcon/
I would like to know if there is actually any FreeIPA user interested in this
type of interface, worth asking on freeipa-users?
On 09/29/2015 08:51 AM, Petr Spacek wrote:
> Hello,
>
> I did not read any of the RFCs referenced below, but it sounds relevant to us:
>
> 1. Introduction
>
> [...]
>
> Unlike the practice of some protocols like Application Bridging for
> Federated Access Beyond web (ABFAB) and SAML2 WebSSO, SCIM provides
> provisioning and de-provisioning of resources in a separate context
> from authentication (aka just-in-time provisioning).
>
> [...]
>
> 2. SCIM User Scenarios
>
> 2.1. Background and Context
>
> The System for Cross-domain Identity Management (SCIM) specification
> is designed to manage user identity in cloud-based applications and
> services in a standardized way to enable interoperability, security,
> and scalability. The specification suite seeks to build upon
> experience with existing schemas and deployments, placing specific
> emphasis on simplicity of development and integration, while applying
> existing authentication, authorization, and privacy models. The
> intent of the SCIM specification is to reduce the cost and complexity
> of user management operations by providing a common user schema and
> extension model, as well as binding documents to provide patterns for
> exchanging this schema using standard protocols. In essence, make it
> fast, cheap, and easy to move users in to, out of, and around the
> cloud.
>
> Links:
> * http://tools.ietf.org/html/rfc7642
> * http://tools.ietf.org/html/rfc7643
> * http://tools.ietf.org/html/rfc7644
>
>
> I hope this is not just noise.
>
> Petr^2 Spacek
>
>
>
> -------- Forwarded Message --------
> Subject: [rfc-dist] RFC 7642 on System for Cross-domain Identity Management:
> Definitions, Overview, Concepts, and Requirements
> Date: Fri, 25 Sep 2015 16:34:54 -0700 (PDT)
> From: rfc-editor at rfc-editor.org
> To: ietf-announce at ietf.org, rfc-dist at rfc-editor.org
> CC: drafts-update-ref at iana.org, scim at ietf.org, rfc-editor at rfc-editor.org
>
> A new Request for Comments is now available in online RFC libraries.
>
>
> RFC 7642
>
> Title: System for Cross-domain Identity Management:
> Definitions, Overview, Concepts, and Requirements
> Author: K. LI, Ed., P. Hunt, B. Khasnabish,
> A. Nadalin, Z. Zeltsan
> Status: Informational
> Stream: IETF
> Date: September 2015
> Mailbox: kepeng.lkp at alibaba-inc.com,
> phil.hunt at oracle.com,
> vumip1 at gmail.com, tonynad at microsoft.com,
> zachary.zeltsan at gmail.com
> Pages: 19
> Characters: 38759
> Updates/Obsoletes/SeeAlso: None
>
> I-D Tag: draft-ietf-scim-use-cases-08.txt
>
> URL: https://www.rfc-editor.org/info/rfc7642
>
> DOI: http://dx.doi.org/10.17487/RFC7642
>
> This document provides definitions and an overview of the System for
> Cross-domain Identity Management (SCIM). It lays out the system's
> concepts, models, and flows, and it includes user scenarios, use
> cases, and requirements.
>
> This document is a product of the System for Cross-domain Identity Management
> Working Group of the IETF.
>
>
> INFORMATIONAL: This memo provides information for the Internet community.
> It does not specify an Internet standard of any kind. Distribution of
> this memo is unlimited.
>
> This announcement is sent to the IETF-Announce and rfc-dist lists.
> To subscribe or unsubscribe, see
> https://www.ietf.org/mailman/listinfo/ietf-announce
> https://mailman.rfc-editor.org/mailman/listinfo/rfc-dist
>
> For searching the RFC series, see https://www.rfc-editor.org/search
> For downloading RFCs, see https://www.rfc-editor.org/rfc.html
>
> Requests for special distribution should be addressed to either the
> author of the RFC in question, or to rfc-editor at rfc-editor.org. Unless
> specifically noted otherwise on the RFC itself, all RFCs are for
> unlimited distribution.
>
>
> The RFC Editor Team
> Association Management Solutions, LLC
>
>
> _______________________________________________
> rfc-dist mailing list
> rfc-dist at rfc-editor.org
> https://www.rfc-editor.org/mailman/listinfo/rfc-dist
> http://www.rfc-editor.org
>
>
>
More information about the Freeipa-devel
mailing list