Please use this page to record ideas that you would like to include in the 2023 REFEDS work plan. Copy and paste the table below. Ideas don't need to be fully formed but the more scope we can get, the easier it will be to assess whether the idea should be taken forward. We look forward to all your ideas!
|Title||<title of your proposal here>|
|Description||<description text here>|
|Proposer||<your name here>|
|Resource requirements||<money? effort? coordination? unicorns?>|
|+1's||<for others to voice their support - add your name here>|
Browser changes and FedCM
FedCM ("A privacy preserving federated identity Web API" - quote from GitHub) is several browser vendors go at ensuring users can still use buttons for "Sign in with <third party IdP vendor>..." even as the privacy preserving practices around third party cookies etc. are rolled out - privacy practises that would inevitably break the current login pattern. This baseline will enable us to continue offering our R&E community federated access as long as we take part in its development, and adapt our communities critical software stacks.
<proposed flow chart through API at this stage, can be updated as it is adapted>
Call to action:
This new approach to protect end user privacy that browsers are proposing appears to have significant impact to R&E federation access practices. If you have software, have your developers reviewed https://fedidcg.github.io/FedCM/? Are they aware of a hackathon planned in Feb to test R&E tools and provide the W3C with feedback? Have you considered business continuity effects for your systems, especially if your suppliers do not address the new browser controls? A REFEDS working group is proposed for 2023 workplan 2023 Work Plan Preparation.
|Resource requirements||Need technical experience as well as CSuite outreach|
|Status||Working group approved and added to the REFEDS 2023 Workplan|
OpenID Connect Federation Operations including some work on how we deploy the OIDC Fed spec in a way to make it interoperable between different federations (a la eduGAIN).
Technical experience, OIDC for Federations knowledge, need some FedOps staff to help think this through
|Status||The REFEDS Steering Committee notes that we will always have this on the agenda to help provide updates back to this community, but that previous proposals have always ended in favor of sending the work to OIDCre working group in the OIDF. Also, given where the world is going wrt to wallets, OIDC focus may be too late.|
|Title||Service Catalogue in a Federated world|
What if we had common specifications on services exposed to eduGAIN that would allow us to build a service catalogue ?
We could consider having a first level catalogue, of services offered by NRENs. Then expand this to federation members.
Which requirements would be needed to have such catalogue ? and what are the benefits and risks related to that.
Federation Operators, Service Operators, technical experience, team worked already on the eduGAIN Service Catalogue.
|Status||The work as scoped is not within REFEDS mandate. A community chat to discuss different options will be scheduled in Q1 2023 to determine next steps appropriate for REFEDS.|
The current Metadata Registration Practice Statement is out of date but is still used by eduGAIN candidates.
The eduGAIN Steering Group requests to pick this up as soon as possible.
Casper Dreef on behalf of the eduGAIN Steering Group
|Resource requirements||Federation Best Practice WG|
|Status||A working group has been approved|
|Title||Ensure MET is maintained|
MET (https://met.refeds.org/) is widely used. However the issues list is not being addressed and there are frequently operational issues with the service.
Proposal is to first facilitate the community of MET users to articulate their requirements for a MET service (including but not limited to issues on GitHub) and present some potential ways forward.
The REFEDS White Paper "Service Catalogues in a Federated Context" includes a proposal to consolidate the MET and eduGAIN metadata catalogues so this proposed work item may overlap with Anass CHABLI 's proposal for the work item above.
|Resource requirements||A short-term WG in the first instance|
|Status||This work will be included in the MET maintenance item in the work plan.|
|Description||We should set up a regular liaison program with the FIM4R/FIM4L communities, as per the REFEDS strategic plan.|
|Status||This activity will be picked up as part of REFEDS Promotion and Communication|