News and Events

“How to deploy a unified communications network” and Nrenum.net: MAGIC offers free online trainings on these services “How to deploy a unified communications network” and Nrenum.net: MAGIC offers free online trainings on these services Friday, 02 June 2017 Both courses are part of the work carried out in the MAGIC project during the last...
Global Science Communities: an example of MAGIC success Global Science Communities: an example of MAGIC success Wednesday, 31 May 2017 The MAGIC project just completed two years working to achieve its main objective...

Docuwiki

Responsible partner: CESNET
Instance dedicated to the pilot: https://docuwiki-magic.cesnet.cz
Authentication used: via eduGAIN
Authorization: based on the eduPersonScopedEntitlement containing user’s groups
Service’s URL: https://dokuwiki-magic.cesnet.cz
Service’s Description: DokuWiki is a simple to use and versatile Open Source wiki.
Read access: Open.
Write access: Groups defined on RedCLARA’s GM.
Use of Group Management: The standard was used to grant write access to the groups defined in a third-party Group Manager. So, although the service is being provided by CESNET, in Europe, the authorization is done by RedCLARA, in Latinamerica.

 

Filesender Premium

Responsible partner: RENATER
Instance dedicated to the pilot: https://filesender-premium.renater.fr/
Authentication used: via the French federation (eduGAIN: in evaluation)
Authorization: based on the “mail” and the “common name“ Colaboratorio Communities
Service’s URL: https://filesender-premium.renater.fr
Service’s Description: This is a secure way to share large files with anyone. It’s based on FileSender’s and hosted for members of the RENATER community.
Read access: RENATER community and other on demand authorized edugain’s members.
Write access: RENATER community and other on demand authorized edugain’s members.
Use of Group Management: The standard was used to allow the users that upload a file, to see their groups, no matter if they’re on RedCLARA’s or RENATER’s Group Manager and to pick one of them to inform their members there’s a file for them.


Colaboratorio

Responsible partner: RedCLARA
Instance dedicated to the pilot: http://colaboratorio-dev.redclara.net
Authentication used: via Test IdP
Authorization: based on the eduPersonScopedEntitlement containing user’s groups
Service’s URL: https://colaboratorio.redclara.net
Service’s Description: Sivic is a system for booking H323 Latinamerican infraestructure.
Read access: Everyone on edugain.
Write access: Everyone on edugain.
Use of Group Management: The standard was used to allow the users that book a conference, to see their groups, no matter if they’re on RedCLARA’s, WACREN’s or RENATER’s Group Manager.

Once the MAGIC team defined the standards for Group Management, the detailed interaction structure of the components was designed and the set of services that would be part of the pilot was chosen. The main goal was to have a set of systems for final users, where those could access and develop activities with the groups they are members of regardless those were on their organizational group manager or on another partner institution.

 

Technical architecture

The pilots will be implemented following this architecture:

 

Technical architecture


The main components of this schema are:

Service Providers (SP): The services themselves (file transfers, wiki managers, H323 Booking systems and so).

Identity Providers (IdP): The software components that allow the users to authenticate. This component is that one able to say to the service: “The user is that one that says to be”.

Attribute Authorities (AA): The components that will release the list of groups an user belong to. This Is the component that says to the service: “The user belongs to all these groups”

SAML2: Is the communication standard used to exchange information between the Service Providers, Identity Providers and Attribute Authorities.

Group Manager: are the software components that will hold the information of users and groups, that will feed the Attribute Authority and that will store the information from other Group Managers.

VOOT Protocol: is the choosen protocol for groups information exchange between Group Managers.

Achieving its second objective in the area of Cloud Provisioning and Groupware Standards , which is “To choose or define the standards in order to make groups management systems interoperable across different federated environments, extending federations integration to facilitate authorisation, user interaction, and global group administration”, the MAGIC team chose:

  • SAML2: standard that allows federated identity
  • VOOT: standard that allows to exchange groups information
  • PERUN: group management system
  • SYMPA: group management system
Page 9 of 27
Adv1

MAGIC Partners

 
 
 

Contact us

If you need some other information about MAGIC, please write us to

Connect with us

We're on Social Networks. Follow us & get in touch.

Acknowledgement

This project is co-funded by the Horizon 2020 Framework Programme of the European Union

EC emblem