1. Bandit Identity Provider Overview
  2. Downloading
  3. SVN Access
  4. Building
  5. Deploying And Configuring
  6. Entering Defects/Tasks

Bandit Identity Provider Overview

This is a package that brings together various Bandit and Higgins components into a single package that provides an Identity Provider (IdP) which can be easily deployed and configured. The IdP uses Higgins IdAS (Identity Attribute Service) to access identities in an identity store. The IdP runs as a web application under Tomcat, and provides the following functionality:

  • Creation and management of identities (users). This includes features for creating users, modifying their attributes, deleting users, and managing user passwords. An administrator can configure the attributes that are available for users, including which ones may be edited.
  • Issuing of information cards. Administrators can create card templates. Users may have managed cards issued to them based on a card template. There is also a built-in RP (relying party) page for testing information cards.
  • Security Token Service (STS). The Higgins STS is built right into the IdP. It will issue security tokens when the user selects an information card that was issued by the IdP.
  • Pluggable identity stores via IdAS. IdAS is an abstraction layer that allows different identity store backends. Because the IdP is written to the IdAS abstraction layer, it can easily be connected to different kinds of identity stores, such as LDAP, SQL, etc.

Instructions are provided for downloading, building, deploying, and configuring the solution for your environment. This IdP package is deployed on the Wag and the Bandit Cards sites, and therefore has been somewhat certified - at least to the extent needed to work on Wag and Bandit Cards.

The components and architecture of this solution are described on the architecture page.

Downloading

The solution may be downloaded in two forms:

  1. Tarball: idp-<version>.gz.tar. This is a tar file that contains a tar file for each sub-component as well as build scripts to build a Tomcat WAR file.
  2. WAR file: BanditIdP-<version>.war. This is a war file that can be deployed as a Tomcat servlet. After deploying the war file, you will need to go through an installation/configuration process. This is done via a web-interface.

The download page is found here.

SVN Access

The following URL may be used to check out the Bandit IdP project directly from the SVN repository:

https://code.bandit-project.org/svn/trunk/solutions/idp

To browse the SVN repository click here.

Building

You must first download the tarball - see download page. Build instructions are found here.

Deploying And Configuring

Instructions for deploying and configuring the IdP are found on the deploy and configure page. Other helpful hints for configuring your system that are not specifically IdP configuration tasks may be found on this page.

Entering Defects/Tasks

You may enter a defect or a task for the IdP by clicking here.