perseus : portal-enabled resources via shibbolized end-user security 16 may 2005jisc core middleware...

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

1

PERSEUS: Portal-enabled Resources via Shibbolized End-user Security

PERSEUS Project Update

John Paschoud, Project Manager(and Simon McLeish, and Masha Garibyan)

LSE Library

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

2PERSEUS

Overview

• PERSEUS aims & architecture

• Relationships… Federations?

• Progress to date

• Some challenges

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

3PERSEUS

PERSEUS Project

• July 04 – June 06• Portal-enabled Resources via Shibbolized End-user

Security• LSE Shib-IdP established in previous projects

– LSE was the first Shibboleth adopter in the UK

• Using this to explore:– Access to end-user info systems integrated via an

institution-wide portal (uPortal development)– Next steps in ‘fine-grain’ authorisation (Signet development)– Access for ‘ad-hoc’ user communities: Alumni groups as

Virtual Organisations

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

4PERSEUS

Project aims

• Using LSE as a testbed– Multiple user identities and attributes (but ‘only’

about 10K directory identities)– Infrastructure – Resource licenses

• Producing:– Documented, scaleable campus models for

implementation– Contribution to OSS developments of uPortal and

Signet

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

5PERSEUS

PERSEUS ‘Shibbolized’ architecture

(external resources)

portal

CMS

content

CLR (eg)

Organisational Domain

Voyager

library data

Organisational Domain

(eg)Jstor

e-journals

Shib AA--------------(+ authority manager)

YaleCAS(web ISO)

CMS

LDAP

enterprisedirectory

SITS

student data

SP

SP

HR

staff data

content content

SP

SP SP

SP

CLR (eg)

CMS

SP

content

CMS

SP

content

SP SP

CLR = Collection-Level Registry CMS = Content Mgmt System

SP

IdP

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

6PERSEUS

PERSEUS relationships

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

7PERSEUS

Related projects

• DART– Digital Anthropology Resources for Teaching

• nereus– European collaboration for Economics research

• ShibboLEAP– Shibboleth-enabling the London University

SHERPA-LEAP OA consortium

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

8PERSEUS

[DART]

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

9PERSEUS

[Nereus]

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

10PERSEUS

[ShibboLEAP]

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

11PERSEUS

Federations?

nereus

ShibboLEAP

DART

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

12PERSEUS

Real-life roles

• Service providers

• Resource owners

• Students - in many roles

• Academics-as-teachers

• Academics-as-researchers

• Academics-as-decision-makers

• Alumni …as???

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

13PERSEUS

Progress to date [1]

• Shibboleth progress– Installation (and many upgrades!) of IdP

and SP software at LSE– Successful connection to SDSS / Athens

test federations– Investigation of SELinux incompatibilities

with Shib & testing of fixed SP software (in progress)

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

14PERSEUS

Progress to date [2]

• Integration progress– Helping Endeavor set up test SP for

Voyager/ENCompass system (LSE Library mgmt systems)

– Initial work on writing Voyager/ENCompass portlets for uPortal

– Work in progress to make LSE Dspace repository ‘Shibbolised’

– LSE installation of SigNet 0.3 release (in progress)– Ongoing discussions on uPortal/Shibboleth

integration (through Internet2 team)

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

15PERSEUS

Progress to date [3]

• Content licences– Initial scoping study on LSE Library e-resources

management and current e-licensing situation– Active participation in testing Meridian (new e-

resources mgmt system from Endeavor)– Active participation in major e-licensing initiatives

(e.g. the EDItEUR ‘ERMI / ONIX Licensing Terms Workshop’, 21 Apr 05)

– Work in progress to conduct a joint PERSEUS / NEREUS study about current e-resources access terms and conditions

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

16PERSEUS

Progress to date [4]

• Dissemination & publicity– Public website (www.angel.ac.uk/PERSEUS/)– Monthly update reports for stakeholders & associate

partners– LSE Library Foyer exhibition – Presentations at relevant UK and international

events (e.g. EuroCAMP, I2MM, UKSG, UCISA)– Publications

• ‘Installing Shibboleth’ in Ariadne (suggestions on improving Shibboleth installation experience)

• Articles in Assignation, New Review of Information Networking

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

17PERSEUS

Some challenges

• Slow progress with Signet/PERMIS developments

• Difficulties with uPortal integration – (at heart I’m this sort of engineer, but sometimes

we’re forced to be this sort)

• A need for a central (UK) database of standard licences for major suppliers that reflects Shib-usable (eduPerson) attributes

• Devising ways to engage with Alumni groups

16 May 2005 JISC Core Middleware Programme Meeting, Loughborough

18PERSEUS

Contact details

Email: J.Paschoud@lse.ac.uk

www.angel.ac.uk/PERSEUS