Welcome to time-change-confusion time of year!
Roland, Ivan, Heather
0 - Agenda bash
1 - GitHub review
a. OIDC - https://github.com/IdentityPython
Third implementor's federation draft is out for vote in the OIDF.
Roland did the last certification step (logout certification for the RP libraries). Those
have been submitted, but Roland hasn't heard back yet.
Considering a TNC22 session with Giuseppe on the intended move to an OIDC federation for
Italian government entities.
Projects was using a crypto library at version 3 that suddenly jumped to version 35 (they
are changing both the code and the versioning scheme) but that broke many things.
b. Satosa - https://github.com/IdentityPython/SATOSA
Preparing a new release that will include resolution to an issue
) that the OIDC front end using the old
pyop library that did not properly handle error redirect URIs. Will set the minimum
version allowed for pyop to 3.3.1. The changes bring us closer to phasing out pyop.
Ivan will redo the Satosa docker image, adding additional documentation along with a few
other changes. Will be working on updating "types" first. More info will be in
the code; it will be a gradual change that starts in the microservices.
- Ivan pushed a fix for this, but
wants to expand the fix more to allow for rotating state-encryption keys.
c. pySAML2 - https://github.com/IdentityPython/pysaml2
Preparing a new release that will tie the verification request with a redirect binding.
Expect a big change log. See https://github.com/IdentityPython/pysaml2/pull/805
d. Any other project (pyFF, djangosaml2, etc)
2 - Discussion
Heather is doing another browser update as part of InCommon's webinar series.
Registration not required: https://internet2.edu/i2-online/