Overview

The Federation Registry project provides an extensible, open web application that provides a central point of registration, management and reporting for identity and service providers participating in a standards compliant SAML 2 identity federation.

The Federation Registry defines a hierarchy of Organisation that contains both Identity Providers and Service Providers. The management of these components is delegated out to the owing organisations making the tool almost completely self-service. That is anyone can register an organisation for instance, however the organisation will not appear as a valid federation component until it has been approved through the approval workflows defined within FR.

It is developed by the Australian Access Federation and released under the permissive Apache 2.0 open source license with source code and issue hosting provided by Github.

Key Features

  • Management for all aspects of SAML 2 compliant Identity and Service Providers 
  • SAML 2.x compliant metadata generation 
  • Additional assistance for Shibboleth IDP and SP administrators including automated Attribute Filter generation 
  • Public registration for Organisations, Identity Providers and Service Providers that are new to the federation
  • Organisations can have any number of IdP and SP owned by them (service only organisations are popular with publishers for example)
  • A personalised dashboard view of the federation for all users 
  • A cross browser (including mobile devices) HTML5 compliant user interface which can be branded for deploying organisations. 
  • Multilingual capable 
  • A fully customisable workflow engine to handle registrations and other critical federation changes 
  • In-depth reporting to gain insight to the workings of the entire federation 
  • Federation integrated, automatically provisioned user accounts with fine grained access control

Get Started

The project is provided in source form onlyYou will need to spend a little time understanding various scripts and concepts to appreciate how it all fits together and to get things running.Previous experience with Git, SAML, federations and basic web development are essential.Previous experience with Java/Groovy/Grails will help you a lot. If that doesn't phase you then you're ready to Get Started deploying Federation Registry 2.

Technologies

License Notice

This product includes software developed at Highcharts - http://www.highcharts.com.This is used by the AAF under the Highcharts 'Non-commercial - Free' license defined by http://creativecommons.org/licenses/by-nc/3.0/ as the Australian Access Federation Inc is both a not for profit and Australian University sector organisation.Other organisations deploying Federation Registry must decide how licensing for Highcharts applies to them at http://shop.highsoft.com/highcharts.html and obtain any licenses that are necessary.


Federation Registry also providers the following functionality;

  • Maintains contacts and administrator lists for each component;
  • Federation utilisation reporting of Identity providers and Service providers
  • Compliance reporting
  • Federation workflow management
  • Metadata generation
  • Attribute filter generation
  • Federation status monitors management  and more


The federation registry can be accessed via the AAF Dashboard or directly in the Test environment here and Production environment here.


Screenshots


Dashboard






Reporting






SAML Endpoint Management