Download presentation
Presentation is loading. Please wait.
1
New York regional information centers
Jump Start! xPress roster via sif 2 New York regional information centers RIC One project Jason Wrage © Access 4 Learning (A4L) Community
2
Standard Utilization © Access 4 Learning (A4L) Community
3
© Access 4 Learning (A4L) Community
4
Concerns over privacy and security lead to the demise of inBloom
The Challenge “Every new beginning comes from some other beginning’s end.” Seneca (or Semisonic?) Concerns over privacy and security lead to the demise of inBloom © Access 4 Learning (A4L) Community
5
The 700+ districts in New York state still needed solutions for data interoperability & SSO…
© Access 4 Learning (A4L) Community
6
Reliably and consistently obtaining data from (6) different student systems
© Access 4 Learning (A4L) Community
7
Maximizing adoption potential to provide students and teachers with lots of choices
© Access 4 Learning (A4L) Community
8
The Solution Enter: API and LOGIN
Entrust the regional service centers already providing data and networking services to districts with building a better mousetrap Business requirements related to privacy and security largely drove the defining architectural characteristics Emphasis is on local & regional control Regional data hubs Federated single sign on © Access 4 Learning (A4L) Community
9
The Solution What’s the best way to securely provide rostering data to educational apps? A modern, open, RESTful web service API Building on SIF 3, we developed xPress Roster Our implementation is known as RIC One API What’s the best way to provide Single Sign On, while maintaining local control and security best practices? Federated identity Our implementation is known as RIC One LOGIN © Access 4 Learning (A4L) Community
10
“Better together” but “independently adoptable”
The Solution RIC One API ingests data from SISs using SIF2 offers roster data to client apps via the xPress Roster API RIC One LOGIN connects to district, regional or cloud directories (IdPs) via LDAPS Offers SSO services to service providers using SAML 2, WS-Federation and OpenID Connect (future) “Better together” but “independently adoptable” © Access 4 Learning (A4L) Community
11
The Standards RIC One API Function Standard Description Data ingestion
SIF 2 Near-universal support by source systems (SISs), reliability and real time were the main benefits to using SIF2 to get data. Data storage CEDS We created a “light” schema to support rostering based on CEDS DES. This enables us to be agnostic for ingestion and API output. API xPress Roster /SIF 3 We based xPress roster on both CEDS and SIF3. It is designed for simplicity and ease of use by developers of client apps. Code sets Since SIF 3 does not provide a standard set of codes, we decided that the option sets in CEDS were the best way to go. © Access 4 Learning (A4L) Community
12
The Standards RIC One LOGIN Function Standard Description
Directory access LDAPS Near-universal support by source systems (SISs), reliability and real time were the main benefits to using SIF2 to get data. SSO SAML 2 The current de facto standard for enterprise, web-enabled SSO. WS-Federation An older standard required for Office 365 support. OpenID Connect Positioned to become the new standard of choice for SSO. Better support for mobile. © Access 4 Learning (A4L) Community
13
RIC One Integrated System Architecture
Nuts & Bolts DPA (x12) Config Service Auth Service District SISs Other Data Sources District Directories Identity Federation Provisioning Auth-Time Client Client App/SP SAML Client API Client LOGIN Components API Components Central Services RIC One Integrated System Architecture © Access 4 Learning (A4L) Community
14
Nuts & Bolts These solutions are based almost exclusively on
Open standards: xPress Roster SIF 3 SIF NA 2.x CEDS Open source: NSIP’s SIF 2 and SIF 3 frameworks ForgeRock’s identity platform Linux, Docker, MySQL/MariaDB, Node.JS, Loopback © Access 4 Learning (A4L) Community
15
Meeting Stakeholder Needs
Districts Enabling streamlined, equitable access to apps Heightened awareness of privacy and security Eliminates the burden of manual processes RICs Collaboration across regions Reduction in labor required to build and maintain traditional extract methods across multiple SISs Vendors A single API for roster data Easy to implement (we even provide client libraries) © Access 4 Learning (A4L) Community
16
Related Sessions Open Source, later today xPress Next, Wednesday
xPress Attendance, Thursday Thank you! For more information © Access 4 Learning (A4L) Community
Similar presentations
© 2024 SlidePlayer.com. Inc.
All rights reserved.