[Freeipa-devel] [rfc-dist] RFC 7642 on System for Cross-domain Identity Management (SCIM)

Martin Kosek mkosek at redhat.com
Wed Sep 30 11:41:12 UTC 2015 

Thanks for sharing. Just for the record, there was a lot of SCIM related
presentations at the latest LDAPCon where FreeIPA was present as well:

http://lanyrd.com/2013/ldapcon/

I would like to know if there is actually any FreeIPA user interested in this
type of interface, worth asking on freeipa-users?

On 09/29/2015 08:51 AM, Petr Spacek wrote:
> Hello,
> 
> I did not read any of the RFCs referenced below, but it sounds relevant to us:
> 
> 1.  Introduction
> 
> [...]
> 
>    Unlike the practice of some protocols like Application Bridging for
>    Federated Access Beyond web (ABFAB) and SAML2 WebSSO, SCIM provides
>    provisioning and de-provisioning of resources in a separate context
>    from authentication (aka just-in-time provisioning).
> 
> [...]
> 
> 2.  SCIM User Scenarios
> 
> 2.1.  Background and Context
> 
>    The System for Cross-domain Identity Management (SCIM) specification
>    is designed to manage user identity in cloud-based applications and
>    services in a standardized way to enable interoperability, security,
>    and scalability.  The specification suite seeks to build upon
>    experience with existing schemas and deployments, placing specific
>    emphasis on simplicity of development and integration, while applying
>    existing authentication, authorization, and privacy models.  The
>    intent of the SCIM specification is to reduce the cost and complexity
>    of user management operations by providing a common user schema and
>    extension model, as well as binding documents to provide patterns for
>    exchanging this schema using standard protocols.  In essence, make it
>    fast, cheap, and easy to move users in to, out of, and around the
>    cloud.
> 
> Links:
> * http://tools.ietf.org/html/rfc7642
> * http://tools.ietf.org/html/rfc7643
> * http://tools.ietf.org/html/rfc7644
> 
> 
> I hope this is not just noise.
> 
> Petr^2 Spacek
> 
> 
> 
> -------- Forwarded Message --------
> Subject: [rfc-dist] RFC 7642 on System for Cross-domain Identity Management:
> Definitions, Overview, Concepts, and Requirements
> Date: Fri, 25 Sep 2015 16:34:54 -0700 (PDT)
> From: rfc-editor at rfc-editor.org
> To: ietf-announce at ietf.org, rfc-dist at rfc-editor.org
> CC: drafts-update-ref at iana.org, scim at ietf.org, rfc-editor at rfc-editor.org
> 
> A new Request for Comments is now available in online RFC libraries.
> 
> 
>         RFC 7642
> 
>         Title:      System for Cross-domain Identity Management:
>                     Definitions, Overview, Concepts, and Requirements
>         Author:     K. LI, Ed., P. Hunt, B. Khasnabish,
>                     A. Nadalin, Z. Zeltsan
>         Status:     Informational
>         Stream:     IETF
>         Date:       September 2015
>         Mailbox:    kepeng.lkp at alibaba-inc.com,
>                     phil.hunt at oracle.com,
>                     vumip1 at gmail.com,  tonynad at microsoft.com,
>                     zachary.zeltsan at gmail.com
>         Pages:      19
>         Characters: 38759
>         Updates/Obsoletes/SeeAlso:   None
> 
>         I-D Tag:    draft-ietf-scim-use-cases-08.txt
> 
>         URL:        https://www.rfc-editor.org/info/rfc7642
> 
>         DOI:        http://dx.doi.org/10.17487/RFC7642
> 
> This document provides definitions and an overview of the System for
> Cross-domain Identity Management (SCIM).  It lays out the system's
> concepts, models, and flows, and it includes user scenarios, use
> cases, and requirements.
> 
> This document is a product of the System for Cross-domain Identity Management
> Working Group of the IETF.
> 
> 
> INFORMATIONAL: This memo provides information for the Internet community.
> It does not specify an Internet standard of any kind. Distribution of
> this memo is unlimited.
> 
> This announcement is sent to the IETF-Announce and rfc-dist lists.
> To subscribe or unsubscribe, see
>   https://www.ietf.org/mailman/listinfo/ietf-announce
>   https://mailman.rfc-editor.org/mailman/listinfo/rfc-dist
> 
> For searching the RFC series, see https://www.rfc-editor.org/search
> For downloading RFCs, see https://www.rfc-editor.org/rfc.html
> 
> Requests for special distribution should be addressed to either the
> author of the RFC in question, or to rfc-editor at rfc-editor.org.  Unless
> specifically noted otherwise on the RFC itself, all RFCs are for
> unlimited distribution.
> 
> 
> The RFC Editor Team
> Association Management Solutions, LLC
> 
> 
> _______________________________________________
> rfc-dist mailing list
> rfc-dist at rfc-editor.org
> https://www.rfc-editor.org/mailman/listinfo/rfc-dist
> http://www.rfc-editor.org
> 
> 
>

More information about the Freeipa-devel mailing list