Superpatterns

Pat Patterson on Identity Management, Federation and Single Malt Scotch
         

accessmanager adoption authentication bloggers burtongroup catalyst community extensions federation google identity libertyalliance lightbulb links opends openid opensource opensso php saml sdn security sso sun webservices
 
« From Categories to... | Main | Development in the... »

08 Jan · Mon 2007

Audi UK using OpenSSO to service 250,000 users
[ ]

Dave 'Wavy' Holroyd of Good Technology reports on his production deployment of OpenSSO in the UK today on dev@opensso.dev.java.net. With his kind permission. I'll just quote Dave here, lightly edited to turn his footnotes into hyperlinks:

Ok, so, in mid 2006 we rebuilt the Audi UK site to integrate with the Audi Global Content Management solution, and upgrade the previous, pre-J2EE technology platform. One of several features from the old site not included in the first delivery was the ability to log in to access special content and tools.

Having moved from a single-application model to a raft of independent webapps, that login functionality now requires a single sign-on solution. Also, given historical needs for integration with third-party systems and components, we wanted something based on well-thought-out Web Services, and a potential upgrade path to implement Federation.

Just before Christmas 2006, we deployed an OpenSSO system adapted with custom Authentication and Data Store plugins. These make use of the site's existing relational database containing the profiles of around a quarter of a million registered users.

We integrated login and registration functions directly into our application rather than using the generic OpenSSO user interface. This enables access to functions like 'ordering a postal brochure' by both authenticated and unauthenticated users, with the option for unauthenticated users to register toward the end of the process.

This is a great example of the kind of deployment that OpenSSO makes possible - Dave leveraged his visibility into the source code to create a solution customized to his needs, flagging some bugs in the process. Good, good, good, good, good... Good Technology!

@ 05:19 PM PST Comments [4]
 
 
 
Comments:

Could you supply more details such as exactly which products make up the Audi Global Content Management? How do they handle authorization across a federated environment? Was there any handshake with external partners or is this internally focused only?

Posted by James on January 10, 2007 at 03:36 AM PST #

Hi James - I've asked Dave if he can leave a comment in response. AFAIK, there is no federation with external partners.

Posted by Pat on January 10, 2007 at 03:44 PM PST #

Word from Mr Holroyd:
This deployment doesn't do federation, or actually integrate with the CMS yet, just simple SSO and profile sharing accross a single cluster of applications. OpenSSO provides part of the platform on which some of these things can be built in a later phase of work.

Posted by Pat on January 10, 2007 at 05:17 PM PST #

that will be cool, if we know it more detail, event me now, the Netscape Directory Server user, still dont know how to use OpenSSO.

Posted by Frans Thamura on January 16, 2007 at 07:37 PM PST #

Post a Comment:

Comments are closed for this entry.
« From Categories to... | Main | Development in the... »
 

    OpenSSO - Get It Now

    Identity Management Buzz Podcast
    Stay connected to news, show notes and leave your feedback.
    » More
    Contact Me
  • My status
  • View Pat Patterson's profile on LinkedIn
  • ohloh profile for Pat Patterson
  • Feedback form
  • i-name
    Listening To
    Listen to Radio Pat
    www.flickr.com
    superpat7's photos More of superpat7's photos
    Technorati
Valid XHTML or CSS?
[This is a Roller site]
    Disclaimer
  • I work at Sun Microsystems. The opinions expressed here are my own, and neither Sun nor any other party necessarily agrees with them.
Original theme by Rowell Sotto. Heavily modified by Pat Patterson.