INDIGO IAM
The Identity and Access Management Service provides a layer where identities, enrollment, group membership and other attributes and authorization policies on distributed resources can be managed in an homogeneous way, supporting the federated authentication mechanisms supported by the INDIGO AAI. The IAM service provides user identity and policy information to services so that consistent authorization decisions can be enforced across distributed services.
Summary:
Updates
Release Notes v0.6.0
What's new
Highlights of the 0.6.0 release:
Support audience enforcement on access tokens
Nested groups
Configurable token and approval cleanup period
Improved performance for some inefficient queries
Improved audit log
Bug fixing
More details: https://github.com/indigo-iam/iam/issues?utf8=?&q=milestone%3Av0.6.0 or https://github.com/indigo-iam/iam/milestone/2
Supported Platforms:
The IAM service is currently distributed as a docker image from Dockerhub, so in order to run the service, you will need Docker v. 1.11.1 or greater. If you want to use docker-compose to deploy the service, you will also need docker-compose v.1.7.0 or greater.
List of RfCs
Deployment Notes
How to upgrade already deployed service:
If you've followed the gitbook guide (https://indigo-dc.gitbooks.io/iam/content/doc/admin.html), you could do as follows:
docker pull indigodatacloud/iam-login-service
docker stop iam-login-service
docker rm iam-login-service
docker run \
--name iam-login-service --net=iam -p 8080:8080 \
--env-file=/path/to/iam-login-service/env \
-v /path/to/keystore.jks:/keystore.jks:ro \
indigodatacloud/iam-login-service
Service Reference
Please read the Deployment and Administration guide
Known Issues
N/A
List of Artifacts
Docker Container:
Documentation
Support
Last updated