Attendees
Roland, Heather, Scott, Ivan, Matthew

Notes:
0 - Agenda bash

1 - Project review

   a. General
[not for public consumption] Security issues - haven't resolved this yet; will be creating a patch and eventually entirely deprecating the affected package.
Regarding the recent security issue reported by Shibboleth, we use the same XML parser but it is restricted to a specific set of rules. We do not appear to be affected by the issue. Ivan is still investigating.

   b. OIDC - https://github.com/IdentityPython (JWTConnect-Python-CryptoJWT, idpy-oidc, fedservice, etc.)
Roland has a fork named fedservice that has a number of updates (this is separate from the fedservice package). Roland has tried to condense it, but that hasn't worked well. It is a massive set of changes. Will want people to try to use the package and see if it breaks. If it does, reach out to Roland for assistance. Fedservice the package is almost update to the latest version of the OIDC federation spec. SUNET will run an OIDC federation POC which will provide us with some useful feedback.

[not for public consumption] The Swedish government agency dealing with immigration/emigration want to migrate from a SAML federation to an OIDC federation. They are running a Microsoft proxy and Roland has pointed them to Satosa. They are a java shop, but Roland will suggest they donate money to idpy for Satosa support and support it that way.

Note that SUNET is starting work on a digital wallet as part of the EU initiative. This may result in additional packages or libraries, and will primarily support OIDC

   c. Satosa - https://github.com/IdentityPython/SATOSA
No update.

   d. pySAML2 - https://github.com/IdentityPython/pysaml2
New release has been posted (https://github.com/IdentityPython/pysaml2/releases/tag/v7.3.0)
Big items include:

used poetry to clean things up, refactored code style
attribute requirements for subject-id

Next release will start using mypy, bump the supported python version to 3.9, and support typing. See https://github.com/IdentityPython/pysaml2/pull/896

After that, will start looking at the use of pyOpenSSL for certificates and temporary file management for Window.

e. Any other project (pyFF, djangosaml2, etc)
Note that Matthew is going to package up pyFF and the thiss.io service. If anyone would like to work with him on that, please reach out!

2 - AOB
What are the benefits of poetry?