{"id":174,"date":"2007-09-19T15:31:28","date_gmt":"2007-09-19T22:31:28","guid":{"rendered":"http:\/\/www.laurenwood.org\/anyway\/archives\/2007\/09\/19\/suns-openid-idp-introduction\/"},"modified":"2007-10-21T09:28:48","modified_gmt":"2007-10-21T16:28:48","slug":"suns-openid-idp-introduction","status":"publish","type":"post","link":"https:\/\/www.laurenwood.org\/anyway\/2007\/09\/suns-openid-idp-introduction\/","title":{"rendered":"Sun\u2019s OpenID IdP: Introduction"},"content":{"rendered":"<p>This is the first of a series of posts on <a href=\"http:\/\/www.sun.com\">Sun Microsys\u00adtem<\/a>\u2019s OpenID@Work ser\u00advice, which is an <a href=\"http:\/\/openid.net\">Open\u00adID<\/a> Iden\u00adtity Pro\u00advider avail\u00adable for use by Sun employees.<\/p>\n<p>[Update: I was asked what the pur\u00adpose of these post\u00adings is \u2014 it\u2019s simply to share our exper\u00adi\u00adences in the hope that they\u2019re help\u00adful to others.]<\/p>\n<p>I was part of the team that put up the Open\u00adID Iden\u00adtity Pro\u00advider. I wrote a lot of the pages, revamped Sun\u00ad\u2019s default style sheet to work with the <span class=\"caps\">HTML<\/span> I wanted on the pages, and took part in all the dis\u00adcus\u00adsions about policies and secur\u00adity. I\u2019m also the \u201cdata stew\u00adard\u201d for the IdP, respons\u00adible for ensur\u00ading that our policies regard\u00ading data pri\u00advacy are car\u00adried out. Giv\u00aden that range of tasks in the pro\u00adject, it\u2019s no sur\u00adprise that when we div\u00advied up the areas for blog\u00adging, I picked the policy ques\u00adtions, and oth\u00ader people on the team will blog about oth\u00ader areas. We\u2019ll be cross-link\u00ading to each oth\u00aders\u2019 posts, of course. For example, here\u2019s <a href=\"http:\/\/beuchelt.blogdns.net:8080\/OpenIDAtWork.aspx\">Gerry\u00ad\u2019s intro\u00adduc\u00adtion<\/a>.<\/p>\n<p>One of the good things about work\u00ading for Sun is that there are a <b>lot<\/b> of people with rel\u00adev\u00adant expert\u00adise, who also under\u00adstand the need to be flex\u00adible. We spent a lot of time dis\u00adcuss\u00ading the user policy with the people in the Chief Pri\u00advacy Office (who also let me write it in lan\u00adguage people can under\u00adstand), we had secur\u00adity experts review not only the deploy\u00adment but also the Open\u00adID spe\u00adcific\u00ada\u00adtion (they\u2019ll be blog\u00adging more on those aspects them\u00adselves), and on the tech\u00adnic\u00adal side many people went out of their way to help. As an example, I spent most of one week\u00adend try\u00ading to fig\u00adure out a weird <span class=\"caps\">MIME<\/span> type prob\u00adlem with the web serv\u00ader with Murthy Chint\u00adalapati (aka cvr), him email\u00ading \u201ctry this\u201d, me email\u00ading back \u201cnope, did\u00adn\u2019t work\u201d until we even\u00adtu\u00adally solved the prob\u00adlem. In this series I\u2019m going to be talk\u00ading about a few of the issues we dis\u00adcussed, and how we resolved them. This is not to say we came up with per\u00adfect solu\u00adtions, or that they are neces\u00adsar\u00adily applic\u00adable to oth\u00ader com\u00adpan\u00adies or cir\u00adcum\u00adstances, but at the very least they will give you things to think about if you\u2019re con\u00adsid\u00ader\u00ading a sim\u00adil\u00adar project.&nbsp;<\/p>\n<p>We were heav\u00adily influ\u00adenced by Sun\u00ad\u2019s exper\u00adi\u00adence with blog\u00adging, to the extent that many of our dis\u00adcus\u00adsions about \u201cshould we do this\u201d were answered by \u201cblogs.sun.com did it suc\u00adcess\u00adfully and here\u2019s how\u201d. The sim\u00adil\u00adar\u00adity between the user policy doc\u00adu\u00adments is no coin\u00adcid\u00adence, for example.<\/p>\n<p>If you\u2019re look\u00ading for tech\u00adnic\u00adal doc\u00adu\u00adment\u00ada\u00adtion on Sun\u00ad\u2019s Open\u00adID sys\u00adtem, try Hubert Le Van Gong\u2019s <a href=\"http:\/\/blogs.sun.com\/hubertsblog\/entry\/openid_work_infrastructure_description\">infra\u00adstruc\u00adture descrip\u00adtion<\/a> and <a href=\"http:\/\/blogs.sun.com\/hubertsblog\/entry\/openid_sun_architecture\">Open\u00adID @ Work \u2014 Archi\u00adtec\u00adture<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This is the first of a series of posts on Sun Microsys\u00adtem\u2019s OpenID@Work ser\u00advice, which is an Open\u00adID Iden\u00adtity Pro\u00advider avail\u00adable for use by Sun employ\u00adees. [Update: I was asked what the pur\u00adpose of these post\u00adings is \u2014 it\u2019s simply to share our exper\u00adi\u00adences in the hope that they\u2019re help\u00adful to oth\u00aders.] I was part \u2026 <a href=\"https:\/\/www.laurenwood.org\/anyway\/2007\/09\/suns-openid-idp-introduction\/\" class=\"more-link\">Con\u00adtin\u00adue read\u00ading<span class=\"screen-reader-text\"> \u201cSun\u2019s Open\u00adID IdP: Introduction\u201d<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"wp_typography_post_enhancements_disabled":false,"activitypub_content_warning":"","activitypub_content_visibility":"","activitypub_max_image_attachments":3,"activitypub_interaction_policy_quote":"","activitypub_status":"","footnotes":""},"categories":[13],"tags":[25,24],"class_list":["post-174","post","type-post","status-publish","format-standard","hentry","category-identity","tag-openid","tag-sunopenid"],"_links":{"self":[{"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/posts\/174","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/comments?post=174"}],"version-history":[{"count":1,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/posts\/174\/revisions"}],"predecessor-version":[{"id":801,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/posts\/174\/revisions\/801"}],"wp:attachment":[{"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/media?parent=174"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/categories?post=174"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/tags?post=174"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}