Authentication

Objective

Set-up authentication between the Digital Archives and local campus Shibboleth (or other SAML-based) identity providers (IdP).

Due date

01 Aug 2023 

Key outcomes

Campus identity management groups will configure their local IdP to authenticate with the Digital Archives.

Status

 

Problem Statement

Campus users will need to authenticate in order to upload new submissions or access restricted / embargoed materials in the Digital Archives.

Scope

Must have:

  • SP metadata published to InCommon.

  • All campuses – whether they have immediate plans to use Digital Archive or not – configured with release attributes similar to those of ScholarWorks

Not in scope:

  • Non-SAML based systems such as CAS or LDAP

Milestones and deadlines

Milestone

Owner

Deadline

Status

Milestone

Owner

Deadline

Status

SSL certificate

David Walker

Mar 20, 2023

done

Set-up Digital Archives Shibboleth SP

David Walker

Mar 20, 2023

done

Register Digital Archives with InCommon

Marcus Mizushima

Apr 28, 2023

done

Initial testing with Chancellor’s Office IdP

David Walker
Marcus Mizushima

May 19, 2023

done

Provide documentation for configuring local IdP with release policy

David Walker

May 19, 2023

done

Distribute information to campus IdM groups

Marcus Mizushima

Jun 9, 2023

done

Library contacts to follow up with campus IdM groups

Project Managers

Jun 30, 2023

 

Manual exchange of metadata with Okta & Azure campuses

David Walker

Jul 21, 2023

 

All campuses authenticating properly

David Walker

Aug 1, 2023

 

Reference materials