scim-docs/public/overview/identity-management/index.html

145 lines
14 KiB
HTML
Raw Normal View History

2024-11-04 16:09:03 +00:00
<!DOCTYPE html>
<html><head><script src="/livereload.js?mindelay=10&amp;v=2&amp;port=1313&amp;path=livereload" data-no-instant defer></script>
<meta charset="utf-8">
<meta http-equiv="x-ua-compatible" content="ie=edge">
<meta name="viewport" content="width=device-width,initial-scale=1.0">
<meta name="robots" content="index, follow">
<title>Scim - Libre.sh</title>
<meta name="description" content="">
<meta name="author" content=""><meta name="generator" content="Hugo 0.136.5">
<script src="/js/script.js?rnd=1730736434"></script>
<link rel="stylesheet" type="text/css" href="/css/style.css?rnd=1730736434" />
<link rel="preload" href="/fonts/SourceCodePro-Italic.ttf" as="font" type="font/ttf" crossorigin="anonymous">
<link rel="preload" href="/fonts/SourceCodePro-Regular.ttf" as="font" type="font/ttf" crossorigin="anonymous">
<link rel="preload" href="/fonts/SourceCodePro-Black.ttf?" as="font" type="font/ttf" crossorigin="anonymous">
<link rel="preload" href="/fonts/SourceCodePro-SemiBold.ttf" as="font" type="font/ttf" crossorigin="anonymous">
<body><header id="header">
<div class="flex-row baseline">
<div id="logo"><svg width="386" height="127" viewBox="0 0 386 127" fill="none" xmlns="http://www.w3.org/2000/svg">
<path d="M43.6898 126.22C35.3031 126.22 27.3481 124.678 19.8248 121.595C12.4248 118.512 5.82645 114.133 0.0297852 108.46L11.6848 94.4C16.0015 98.5934 20.9965 101.862 26.6698 104.205C32.4665 106.425 38.2631 107.535 44.0598 107.535C50.9665 107.535 56.2081 106.117 59.7848 103.28C63.3615 100.443 65.1498 96.6817 65.1498 91.995C65.1498 88.665 64.3481 86.0134 62.7448 84.04C61.1415 81.9434 58.9215 80.155 56.0848 78.675C53.3715 77.195 50.1648 75.715 46.4648 74.235L29.8148 67.02C25.8681 65.2934 21.9831 63.0734 18.1598 60.36C14.4598 57.5234 11.3765 54.07 8.90979 50C6.56645 45.8067 5.39478 40.75 5.39478 34.83C5.39478 28.4167 7.12145 22.6817 10.5748 17.625C14.1515 12.445 18.9615 8.37503 25.0048 5.41503C31.1715 2.3317 38.2015 0.790039 46.0948 0.790039C53.3715 0.790039 60.2165 2.1467 66.6298 4.86003C73.1665 7.45003 78.7165 11.0267 83.2798 15.59L71.9948 29.65C68.0481 26.4434 63.9165 23.9767 59.5998 22.25C55.2831 20.4 50.7815 19.475 46.0948 19.475C40.4215 19.475 35.7965 20.77 32.2198 23.36C28.7665 25.8267 27.0398 29.28 27.0398 33.72C27.0398 36.8034 27.9031 39.3934 29.6298 41.49C31.4798 43.4634 33.8848 45.19 36.8448 46.67C39.9281 48.0267 43.0731 49.3834 46.2798 50.74L62.7448 57.585C67.5548 59.6817 71.8098 62.1484 75.5098 64.985C79.2098 67.8217 82.0465 71.275 84.0198 75.345C86.1165 79.415 87.1648 84.41 87.1648 90.33C87.1648 96.8667 85.4381 102.848 81.9848 108.275C78.5315 113.702 73.5365 118.08 66.9998 121.41C60.5865 124.617 52.8165 126.22 43.6898 126.22Z" fill="white"/>
<path d="M157.82 126.22C147.584 126.22 138.272 123.815 129.885 119.005C121.622 114.195 115.024 107.165 110.09 97.915C105.28 88.5417 102.875 77.195 102.875 63.875C102.875 54.0084 104.294 45.19 107.13 37.42C109.967 29.5267 113.914 22.8667 118.97 17.44C124.15 12.0134 130.07 7.88171 136.73 5.04504C143.39 2.20837 150.544 0.790039 158.19 0.790039C165.837 0.790039 172.62 2.3317 178.54 5.41503C184.46 8.37503 189.332 11.9517 193.155 16.145L181.685 29.28C178.602 26.0734 175.149 23.6684 171.325 22.065C167.625 20.3384 163.432 19.475 158.745 19.475C152.332 19.475 146.535 21.2634 141.355 24.84C136.299 28.4167 132.29 33.4734 129.33 40.01C126.37 46.5467 124.89 54.3167 124.89 63.32C124.89 72.57 126.309 80.525 129.145 87.185C131.982 93.7217 135.99 98.7784 141.17 102.355C146.35 105.808 152.394 107.535 159.3 107.535C164.48 107.535 169.105 106.487 173.175 104.39C177.245 102.293 180.945 99.5184 184.275 96.065L195.19 108.83C190.257 114.503 184.707 118.82 178.54 121.78C172.374 124.74 165.467 126.22 157.82 126.22Z" fill="white"/>
<path d="M278.5 124V3.01002H304.215L324.935 62.21C326.292 66.0334 327.525 69.8567 328.635 73.68C329.745 77.38 330.855 81.45 331.965 85.89H332.705C333.815 81.45 334.863 77.38 335.85 73.68C336.96 69.8567 338.132 66.0334 339.365 62.21L360.085 3.01002H385.615V124H365.82V68.87C365.82 65.0467 365.943 60.6684 366.19 55.735C366.56 50.8017 366.992 45.93 367.485 41.12C367.978 36.1867 368.472 31.87 368.965 28.17H368.225L358.605 58.88L338.995 112.9H324.565L304.955 58.88L295.705 28.17H294.965C295.458 31.87 295.89 36.1867 296.26 41.12C296.753 45.93 297.123 50.8017 297.37 55.735C297.74 60.6684 297.925 65.0467 297.925 68.87V124H278.5Z" fill="white"/>
<path d="M222 3H238.229C243.794 10.26 245.185 21.392 246.576 24.78C247.967 28.168 247.967 32.524 245.649 36.88C243.33 41.236 245.649 43.656 248.431 48.012C251.213 52.368 254.459 55.756 257.705 61.564C260.951 67.372 257.241 70.276 255.85 71.728C254.459 73.18 252.604 73.18 249.822 76.568C247.04 79.956 249.358 80.44 250.749 85.28C252.14 90.12 249.822 90.604 247.967 91.088C246.112 91.572 246.112 92.54 247.967 93.992C249.822 95.444 247.04 98.348 246.112 100.768C245.185 103.188 247.503 110.932 247.04 112.868C246.576 114.804 243.794 124 234.984 124H222V3Z" fill="white"/>
</svg>
</div>
<div id="logo-menu">
<a><svg width="9" height="8" viewBox="0 0 9 8" fill="none" xmlns="http://www.w3.org/2000/svg">
<path d="M1 1H8" stroke="white" stroke-linecap="round"/>
<path d="M1 4H8" stroke="white" stroke-linecap="round"/>
<path d="M1 7H8" stroke="white" stroke-linecap="round"/>
</svg>
</a>
</div>
<nav id="menu" class="flex-row space-between baseline w-80">
<div>
<ul class="flex-row">
<li><a class="" href="//localhost:1313/">Overview</a></li>
<li><a class="" href="//localhost:1313/implementations/">Implementations</a></li>
</ul>
</div>
<div>
<a class="btn lv2" target="_blank" href="https://simplecloud.info">See the official spec ↗</a>
</div>
</nav>
</div>
</header>
<main class="flex">
<article class="flex article">
<section class="article-header flex">
<h1>Identity Management</h1>
</section>
<section class="article-content">
<picture>
<source srcset="media/small/illus-basics.svg" media="(max-width: 768px)">
<img src="media/illus-basics.svg" alt="Illustation of the basics of identity magagment">
</picture>
<p><section class="grid">
<div class="card flex">
<svg width="39" height="39" viewBox="0 0 39 39" xmlns="http://www.w3.org/2000/svg">
<path fill-rule="evenodd" clip-rule="evenodd" d="M26.591 14.1817C26.591 16.0624 25.8439 17.866 24.5141 19.1958C23.1843 20.5256 21.3807 21.2726 19.5001 21.2726C17.6195 21.2726 15.8159 20.5256 14.4861 19.1958C13.1563 17.866 12.4092 16.0624 12.4092 14.1817C12.4092 12.3011 13.1563 10.4975 14.4861 9.1677C15.8159 7.8379 17.6195 7.09082 19.5001 7.09082C21.3807 7.09082 23.1843 7.8379 24.5141 9.1677C25.8439 10.4975 26.591 12.3011 26.591 14.1817ZM23.0455 14.1817C23.0455 15.122 22.672 16.0238 22.0071 16.6887C21.3422 17.3536 20.4404 17.7272 19.5001 17.7272C18.5598 17.7272 17.658 17.3536 16.9931 16.6887C16.3282 16.0238 15.9546 15.122 15.9546 14.1817C15.9546 13.2414 16.3282 12.3396 16.9931 11.6747C17.658 11.0098 18.5598 10.6363 19.5001 10.6363C20.4404 10.6363 21.3422 11.0098 22.0071 11.6747C22.672 12.3396 23.0455 13.2414 23.0455 14.1817Z" />
<path fill-rule="evenodd" clip-rule="evenodd" d="M19.5 0C8.73068 0 0 8.73068 0 19.5C0 30.2693 8.73068 39 19.5 39C30.2693 39 39 30.2693 39 19.5C39 8.73068 30.2693 0 19.5 0ZM3.54545 19.5C3.54545 23.205 4.80941 26.6157 6.92782 29.3245C8.41555 27.3707 10.3348 25.7874 12.5357 24.6982C14.7366 23.609 17.1595 23.0433 19.6152 23.0455C22.0391 23.0432 24.4316 23.5942 26.6103 24.6565C28.789 25.7188 30.6965 27.2644 32.1874 29.1755C33.7234 27.161 34.7576 24.8097 35.2044 22.3161C35.6512 19.8226 35.4979 17.2584 34.757 14.8359C34.0161 12.4134 32.709 10.2021 30.9438 8.38507C29.1787 6.568 27.0062 5.19739 24.6061 4.38663C22.2061 3.57587 19.6475 3.34828 17.142 3.72268C14.6366 4.09708 12.2563 5.06272 10.1981 6.53969C8.13991 8.01665 6.46303 9.9625 5.30618 12.2162C4.14933 14.4699 3.54577 16.9667 3.54545 19.5ZM19.5 35.4545C15.8375 35.46 12.2855 34.2001 9.44509 31.8878C10.5884 30.2511 12.1101 28.9148 13.8808 27.9926C15.6515 27.0703 17.6188 26.5895 19.6152 26.5909C21.5868 26.5893 23.5303 27.0581 25.2843 27.9584C27.0383 28.8587 28.5522 30.1645 29.7003 31.7673C26.8378 34.1546 23.2273 35.4598 19.5 35.4545Z" />
</svg>
<h4 id="authentication">Authentication</h4>
<p>Who is this user ?</p>
</div>
<div class="card flex">
<svg width="34" height="39" viewBox="0 0 34 39" xmlns="http://www.w3.org/2000/svg">
<path fill-rule="evenodd" clip-rule="evenodd" d="M30 13.3984H4C3.44772 13.3984 3 13.8462 3 14.3984V35.0001C3 35.5524 3.44772 36.0001 4 36.0001H30C30.5523 36.0001 31 35.5524 31 35.0001V14.3984C31 13.8462 30.5523 13.3984 30 13.3984ZM4 10.3984C1.79086 10.3984 0 12.1893 0 14.3984V35.0001C0 37.2092 1.79086 39.0001 4 39.0001H30C32.2091 39.0001 34 37.2092 34 35.0001V14.3984C34 12.1893 32.2091 10.3984 30 10.3984H4Z" />
<path fill-rule="evenodd" clip-rule="evenodd" d="M19.9132 24.3255C21.038 23.5518 21.7753 22.257 21.7753 20.7902C21.7753 18.4208 19.8511 16.5 17.4775 16.5C15.104 16.5 13.1798 18.4208 13.1798 20.7902C13.1798 22.37 14.0351 23.7502 15.3086 24.4949L12.2246 32.1356H23.4943L19.9132 24.3255Z" />
<path fill-rule="evenodd" clip-rule="evenodd" d="M17.3617 3.29927C15.2511 3.29927 13.5402 5.04611 13.5402 7.20094V10.8321H10.3086L10.3086 7.20094C10.3086 3.22397 13.4664 0 17.3617 0C21.2571 0 24.4149 3.22397 24.4149 7.20094L24.4149 10.8321H21.1833V7.20094C21.1833 5.04611 19.4724 3.29927 17.3617 3.29927Z" />
</svg>
<h4 id="authorization">Authorization</h4>
<p>Is this user allowed to access this resource ?</p>
</div>
<div class="card flex">
<svg width="56" height="39" viewBox="0 0 56 39" xmlns="http://www.w3.org/2000/svg">
<path fill-rule="evenodd" clip-rule="evenodd" d="M40.4228 11.7138C39.7851 8.37739 35.6336 0 26.4808 0C15.4808 0 9.48075 9.01238 9.48075 17.5124C4.98045 17.5124 -4.01977 21.7737 2.02013 38.9927L50.98 38.9941C56.4806 32.0124 55.8556 22.0124 52.4806 17.5124C49.882 14.0475 47.3133 12.7416 44.5103 12.4258C43.234 12.2821 41.9092 12.3436 40.5107 12.5C40.5107 12.2882 40.4818 12.0226 40.4228 11.7138ZM48.8824 34.9941C50.3004 32.6015 50.9866 29.8576 51.0602 27.2114C51.1525 23.8926 50.2758 21.2393 49.2806 19.9124C47.7482 17.8692 46.4795 17.0692 45.4341 16.7038C44.3142 16.3125 42.9756 16.2492 40.9554 16.4752L36.5107 16.9724V12.5C36.5107 12.5385 36.5088 12.5291 36.4972 12.4736C36.4655 12.3218 36.3618 11.8254 36.0294 11.0232C35.6241 10.045 34.9929 8.89595 34.1263 7.81634C32.4186 5.68868 29.9687 4 26.4808 4C18.2063 4 13.4808 10.667 13.4808 17.5124V21.5124H9.48075C8.2744 21.5124 6.33275 22.1285 5.16777 23.9504C4.17383 25.5047 3.23347 28.7502 4.95315 34.9928L48.8824 34.9941Z" />
</svg>
<h4 id="storage">Storage</h4>
<p>Where are users identity &amp; credentials stored?</p>
</div>
<div class="card flex">
<svg width="48" height="39" viewBox="0 0 48 39" xmlns="http://www.w3.org/2000/svg">
<path fill-rule="evenodd" clip-rule="evenodd" d="M43 3H30.8462C29.7416 3 28.8462 3.89543 28.8462 5V12.9189C28.8462 14.0235 29.7416 14.9189 30.8462 14.9189H43C44.1046 14.9189 45 14.0235 45 12.9189V5C45 3.89543 44.1046 3 43 3ZM30.8462 0C28.0848 0 25.8462 2.23857 25.8462 5V12.9189C25.8462 15.6803 28.0848 17.9189 30.8462 17.9189H43C45.7615 17.9189 48 15.6803 48 12.9189V5C48 2.23858 45.7615 0 43 0H30.8462Z" />
<path d="M25.8462 26.0811C25.8462 23.3196 28.0848 21.0811 30.8462 21.0811H43C45.7615 21.0811 48 23.3196 48 26.0811V34C48 36.7614 45.7615 39 43 39H30.8462C28.0848 39 25.8462 36.7614 25.8462 34V26.0811Z" />
<path fill-rule="evenodd" clip-rule="evenodd" d="M19.5166 1.66211C15.7177 1.66211 10.9348 2.23833 7.04916 4.40751C3.04881 6.64071 0.0825195 10.5303 0.0825195 16.793C0.0825195 22.6264 2.98227 26.2726 6.70773 28.3775C9.41342 29.9061 12.5355 30.6207 15.2837 30.8853L12.5461 33.6206C11.9601 34.2061 11.9601 35.1555 12.5461 35.741C13.1322 36.3265 14.0823 36.3265 14.6684 35.741L19.8372 30.5765L20.8983 29.5163L19.8372 28.4561L14.6684 23.2916C14.0823 22.706 13.1322 22.706 12.5461 23.2916C11.9601 23.8771 11.9601 24.8265 12.5461 25.412L14.97 27.8338C12.6891 27.5572 10.249 26.9325 8.18343 25.7655C5.27491 24.1222 3.08252 21.4083 3.08252 16.793C3.08252 11.6949 5.39095 8.76902 8.51148 7.02698C11.7467 5.22091 15.9308 4.66211 19.5166 4.66211C20.345 4.66211 21.0166 3.99054 21.0166 3.16211C21.0166 2.33368 20.345 1.66211 19.5166 1.66211Z" />
</svg>
<h4 id="provisioning">Provisioning</h4>
<p>How to manage &amp; transfer users identity ?</p>
</div>
</section>
<img alt="illustration of losing data" src="media/illus-loose-data.svg" class="float-right w-60"></p>
<h3 id="our-environment">Our environment</h3>
<p>Our digital work environment is composed of <strong>many applications</strong> and web services. We want a <strong>seamless user experience</strong> for our free software based collaboration platform. With a <strong>Single Sign-on (SSO)</strong> system users get a unified login and logout experience but there is a catch.</p>
<h3 id="our-problem">Our problem</h3>
<p>Traditional SSO protocols like OpenID Connect do <strong>not support syncing user profiles across applications.</strong> That&rsquo;s means :</p>
<ul>
<li><strong>users are not created by default in all apps</strong> (only after they have logged in at least once)</li>
<li><strong>no mechanisms to propagate the deletion of users</strong></li>
<li>So its <strong>not GDPR compliant</strong> (by default)</li>
</ul>
<h4 id="in-essence">In essence</h4>
<p><mark>Current existing protocols are <strong>difficult to implement or/and to use</strong> or are <strong>custom for specific use case</strong> then <strong>non-standardized</strong>.</mark></p>
</section>
</article>
</main><footer class="flex baseline space-between">
<a class="btn lv1 up-page arrow flex arrow-up flex align-center" title="back to the top" href="#"><svg class="" width="23" height="38" viewBox="0 0 23 38" xmlns="http://www.w3.org/2000/svg">
<path fill-rule="evenodd" clip-rule="evenodd" d="M22.0376 16.7608C23.3208 17.9975 23.3208 20.0025 22.0376 21.2392L5.60906 37.0725C4.32591 38.3092 2.24551 38.3092 0.962365 37.0725C-0.320786 35.8358 -0.320786 33.8308 0.962365 32.5942L15.0676 19L0.962366 5.40584C-0.320785 4.16918 -0.320785 2.16415 0.962367 0.927494C2.24552 -0.309166 4.32592 -0.309166 5.60907 0.927494L22.0376 16.7608Z"/>
</svg>
</a>
<h4>Collaborators</h4>
<ul class="flex-row">
<img src="/media/logo/ih.svg">
<img src="/media/logo/yaal.svg">
<img src="/media/logo/audriga.svg">
<img src="/media/logo/fairkom.svg">
<img src="/media/logo/greenhost.svg">
<img src="/media/logo/ngi.png">
</ul>
</footer>
</body>
</html>