<<O>>  Difference Topic AutographView (r1.36 - 20 Nov 2007 - BrucLiong)
META TOPICPARENT ShARPE
Added:
>
>		 <!--

to Autograph@sourceforge
Added:
>
>		 -->

Autograph - a personal privacy manager

Line: 26 to 28

  • "on top" installation (Shibboleth IdP code is untouched!)
Added:
>
>		 <!--

  • open source project at sourceforge (Apache 2.0 licence)
Changed:
<
<

>
>		 -->


Line: 48 to 51

Support

Added:
>
>

<!--


Added:
>
>		 -->

<!-- * Developer forum (you will need a sourceforge account) -->
 <<O>>  Difference Topic AutographView (r1.35 - 12 Oct 2007 - BrucLiong)
META TOPICPARENT ShARPE
to Autograph@sourceforge
Line: 62 to 62
Added:
>
>		 <!--

Roadmap

  • Release of version 0.9 at sourceforge on 25 August 2006
Changed:
<
<
>
>		 -->

Line: 187 to 188

 ShARPE and Autograph are licensed under Apache License, Version 2.0 -->
Deleted:
<
<		 -- MoritzTheile - 16 Aug 2006
 <<O>>  Difference Topic AutographView (r1.34 - 24 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE
to Autograph@sourceforge
Line: 30 to 30


Changed:
<
<		 <!--
>
>

Autograph in Action

To experience Autograph in action you can test an installation in the MAMS level 1 federation.

Line: 44 to 44
  • Go to one of the Service Providers in the Federation (e.g. sp-afs.mams.org.au ) using the 'TestFed OpenIdP'.
Note: You will only be redirected to Autograph when you visit the Service Provider the first time. After that you will have to go to Autograph explicitly by using this link.
Changed:
<
<		 -->
>
>

Support

 <<O>>  Difference Topic AutographView (r1.33 - 23 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE
to Autograph@sourceforge
Line: 30 to 30


Changed:
<
<
>
>		 <!--

Autograph in Action

To experience Autograph in action you can test an installation in the MAMS level 1 federation.

Line: 44 to 44
  • Go to one of the Service Providers in the Federation (e.g. sp-afs.mams.org.au ) using the 'TestFed OpenIdP'.
Note: You will only be redirected to Autograph when you visit the Service Provider the first time. After that you will have to go to Autograph explicitly by using this link.
Added:
>
>		 -->

Support

 <<O>>  Difference Topic AutographView (r1.32 - 22 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE
to Autograph@sourceforge
Changed:
<
<

Autograph - a privacy management tool

>
>

Autograph - a personal privacy manager


Autograph Screenshot

- the federation becomes transparent -
Line: 10 to 10
Autograph makes privacy in a Shibboleth® federation transparent and manageable. It allows members of an Identity Provider (e.g. students of a university) to configure their own Attribute Release Policy, or, in Autograph terms, their own idCards.

Added:
>
>		 Utilizing Autograph Shibboleth obeys the first two of Kim Cameron's "Laws of Identity":
It reveals personal information only with the user's consent and it discloses only the information which is needed.


 basic Autograph scenario (Flash) small size

Line: 19 to 22

  • seamless integration in Shibboleth Single Sign On Profile more
Changed:
<
<
  • "on top" installation (Shibboleth IdP code is untouched!)
>
>
  • user maintainable attributes

Changed:
<
<
  • easy to uninstall (Shibboleth IdP configuration is untouched!)
>
>
  • "on top" installation (Shibboleth IdP code is untouched!)

  • open source project at sourceforge (Apache 2.0 licence)

Line: 60 to 63

Roadmap

Changed:
<
<
  • Release of version 0.9 25 August 2006
>
>
  • Release of version 0.9 at sourceforge on 25 August 2006

 <<O>>  Difference Topic AutographView (r1.31 - 22 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE
to Autograph@sourceforge
Line: 10 to 10
Autograph makes privacy in a Shibboleth® federation transparent and manageable. It allows members of an Identity Provider (e.g. students of a university) to configure their own Attribute Release Policy, or, in Autograph terms, their own idCards.

Changed:
<
<		 basic Autograph scenario (Flash)
>
>		 basic Autograph scenario (Flash) small size



 <<O>>  Difference Topic AutographView (r1.30 - 20 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE
to Autograph@sourceforge
Line: 48 to 48
Changed:
<
<
>
>		 <!-- * Developer forum (you will need a sourceforge account) -->

Documentation

Line: 60 to 60

Roadmap

Changed:
<
<
  • Release of version 1.0 18 August 2006
>
>
  • Release of version 0.9 25 August 2006

 <<O>>  Difference Topic AutographView (r1.29 - 18 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE
to Autograph@sourceforge
Line: 23 to 23

  • easy to uninstall (Shibboleth IdP configuration is untouched!)
Deleted:
<
<
  • lightweight web application (file based persistency)

  • open source project at sourceforge (Apache 2.0 licence)


Line: 36 to 34

Step 1: Add a user to the testfed openidp:

Changed:
<
<
  • Go to the MAMS Public Identity Provider register service and register a user by filling out the provided form.
>
>
  • Go to the 'TestFed OpenIdP' register service and register a user by filling out the provided form.

Step 2: Configure your idCard with Autograph:

Changed:
<
<
  • Go to one of the Service Providers in the Federation (e.g. sp-afs.mams.org.au) using the MAMS Public Identiy Provider.
>
>
  • Go to one of the Service Providers in the Federation (e.g. sp-afs.mams.org.au ) using the 'TestFed OpenIdP'.
Note: You will only be redirected to Autograph when you visit the Service Provider the first time. After that you will have to go to Autograph explicitly by using this link.

Support

 <<O>>  Difference Topic AutographView (r1.28 - 18 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE
Added:
>
>		 to Autograph@sourceforge

Autograph - a privacy management tool

Autograph Screenshot

Line: 15 to 17

Highlights:


Changed:
<
<
  • seamless integration in Shibboleth Single Sign On Profile
>
>
  • seamless integration in Shibboleth Single Sign On Profile more

  • "on top" installation (Shibboleth IdP code is untouched!)
Line: 52 to 54

Documentation

Changed:
<
<
>
>

Changed:
<
<
>
>

<!-- * Development -->

Roadmap

Line: 181 to 183

ShARPE and Autograph are licensed under Apache License, Version 2.0 -->

Added:
>
>		 -- MoritzTheile - 16 Aug 2006

 <<O>>  Difference Topic AutographView (r1.27 - 17 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 54 to 54

Changed:
<
<
  • Integration in SSO
  • Development
>
>

Roadmap

 <<O>>  Difference Topic AutographView (r1.26 - 16 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 52 to 52

Documentation

Changed:
<
<
  • Installation
>
>

 <<O>>  Difference Topic AutographView (r1.25 - 14 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 53 to 53

Documentation

  • Installation
Changed:
<
<
  • Architecture
>
>

  • Integration in SSO
  • Development
 <<O>>  Difference Topic AutographView (r1.24 - 13 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 45 to 45
Deleted:
<
<

Added:
>
>

Documentation

 <<O>>  Difference Topic AutographView (r1.23 - 11 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 6 to 6

 - the federation becomes transparent -

Changed:
<
<		 Autograph makes privacy in a Shibboleth federation transparent and manageable. It allows members of an Identity Provider (e.g. students of a university) to configure their own Attribute Release Policy, or, in Autograph terms, their own idCards.
>
>		 Autograph makes privacy in a Shibboleth® federation transparent and manageable. It allows members of an Identity Provider (e.g. students of a university) to configure their own Attribute Release Policy, or, in Autograph terms, their own idCards.
basic Autograph scenario (Flash)
Line: 19 to 19

  • "on top" installation (Shibboleth IdP code is untouched!)
Changed:
<
<
  • easy to uninstall (Shibboelth IdP configuration is untouched!)
>
>
  • easy to uninstall (Shibboleth IdP configuration is untouched!)

  • lightweight web application (file based persistency)
Line: 59 to 59

Roadmap

Changed:
<
<
  • Release of version 1.0 on 18th of August 2006
>
>
  • Release of version 1.0 18 August 2006

 <<O>>  Difference Topic AutographView (r1.22 - 11 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 55 to 55
  • Installation
  • Architecture
  • Integration in SSO
Added:
>
>
  • Development

Added:
>
>

Roadmap

  • Release of version 1.0 on 18th of August 2006

 <<O>>  Difference Topic AutographView (r1.21 - 11 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 6 to 6

 - the federation becomes transparent -

Changed:
<
<		 Autograph makes privacy in a Shibboleth federation transparent and manageable. It allows members of an Identity Provider (e.g. students of a university) to configure their own Attribute Release Policy, or, in Autograph terms, their own idCards.
>
>		 Autograph makes privacy in a Shibboleth federation transparent and manageable. It allows members of an Identity Provider (e.g. students of a university) to configure their own Attribute Release Policy, or, in Autograph terms, their own idCards.

basic Autograph scenario (Flash)



 <<O>>  Difference Topic AutographView (r1.20 - 10 Aug 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Added:
>
>

Autograph Screenshot

- the federation becomes transparent -

Autograph makes privacy in a Shibboleth federation transparent and manageable. It allows members of an Identity Provider (e.g. students of a university) to configure their own Attribute Release Policy, or, in Autograph terms, their own idCards.


Changed:
<
<

Autograph Screenshot

>
>

Highlights:



Changed:
<
<		 The internet is basically anonymous, so when you need to access a protected service over the internet, it first needs to find out who you are. Within your institution, this is solved by logging into your local account, after which all your personal information (name, email, telephone, etc.) is available to the service. This works well as long as we stay within this context. However, in case a service is offered by another institution, this is not possible anymore, as your personal information is generally not shared with external parties.
>
>
  • seamless integration in Shibboleth Single Sign On Profile

Changed:
<
<		 One common way to solve this problem is to create a new account for you at the other institution, after which you need to remember yet another username and password. A much better way is that you offer the service provider that offers the service your 'idCard', containing a little bit of personal information about you - this is just like the real world, where you also often introduce yourself by selecting the most appropriate business card for the occasion. And your institution will sign it for you, so the service provider will know that it can trust it.
>
>
  • "on top" installation (Shibboleth IdP code is untouched!)

Changed:
<
<		 Autograph allows you to specify 'idCards' you are offering to service providers. In return, the services will offer you an enhanced customisable user experience. Every time that you visit a service, and only then, your browser will present the specified 'idCard'. However, please note that some service features will not be available if you do not release some personal information.
>
>
  • easy to uninstall (Shibboelth IdP configuration is untouched!)

Changed:
<
<		 ShARPE and Autograph are part of the National Science Foundation Middleware Initiative (NMI) EDIT software release.NMI Logo
>
>
  • lightweight web application (file based persistency)

  • open source project at sourceforge (Apache 2.0 licence)



Deleted:
<
<		 ShARPE and Autograph are licensed under Apache License, Version 2.0

Autograph in Action

Line: 25 to 36

Step 2: Configure your idCard with Autograph:

Changed:
<
<
  • Click on this Autograph link. When the WAYF service comes up choose the testfed openidp and authenticate with the credentials you provided in step 1.
  • Select a Service Provider you want to configure your idCard for.
>
>
  • Go to one of the Service Providers in the Federation (e.g. sp-afs.mams.org.au) using the MAMS Public Identiy Provider.

Changed:
<
<

Installation

Autograph can be installed following the main ShARPE installation procedure.
>
>

Support

Documentation

  • Installation
  • Architecture
  • Integration in SSO

Line: 127 to 150

Autograph user can see the effect of the changes they make to the idCard, if Service Provider descriptions like this are added to your metadata. -->

Deleted:
<
<		 <!--

Deleted:
<
<

Support


Deleted:
<
<

Added:
>
>		 <!--

Other Documentation

* Autograph.ppt: An overview of Autograph.

* smartAttributeRelease_v0.82.pdf: This document contains a detailed example of using Autograph.

Changed:
<
<		 -->
>
>

Background

The internet is basically anonymous, so when you need to access a protected service over the internet, it first needs to find out who you are. Within your institution, this is solved by logging into your local account, after which all your personal information (name, email, telephone, etc.) is available to the service. This works well as long as we stay within this context. However, in case a service is offered by another institution, this is not possible anymore, as your personal information is generally not shared with external parties.

One common way to solve this problem is to create a new account for you at the other institution, after which you need to remember yet another username and password. A much better way is that you offer the service provider that offers the service your 'idCard', containing a little bit of personal information about you - this is just like the real world, where you also often introduce yourself by selecting the most appropriate business card for the occasion. And your institution will sign it for you, so the service provider will know that it can trust it.

Autograph allows you to specify 'idCards' you are offering to service providers. In return, the services will offer you an enhanced customisable user experience. Every time that you visit a service, and only then, your browser will present the specified 'idCard'. However, please note that some service features will not be available if you do not release some personal information.


Added:
>
>		 ShARPE and Autograph are part of the National Science Foundation Middleware Initiative (NMI) EDIT software release.NMI Logo

ShARPE and Autograph are licensed under Apache License, Version 2.0 -->


 <<O>>  Difference Topic AutographView (r1.19 - 03 May 2006 - BrucLiong)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 11 to 11

Autograph allows you to specify 'idCards' you are offering to service providers. In return, the services will offer you an enhanced customisable user experience. Every time that you visit a service, and only then, your browser will present the specified 'idCard'. However, please note that some service features will not be available if you do not release some personal information.

Added:
>
>		 ShARPE and Autograph are part of the National Science Foundation Middleware Initiative (NMI) EDIT software release.NMI Logo

ShARPE and Autograph are licensed under Apache License, Version 2.0


Autograph in Action

Line: 25 to 28
  • Click on this Autograph link. When the WAYF service comes up choose the testfed openidp and authenticate with the credentials you provided in step 1.
  • Select a Service Provider you want to configure your idCard for.
Changed:
<
<		 For more details on Autograph installation, please refer to ShARPE installation.
>
>

Installation

Autograph can be installed following the main ShARPE installation procedure.


<!--

Added:
>
>		 For more details on Autograph installation, please refer to ShARPE installation.

Installation

 <<O>>  Difference Topic AutographView (r1.18 - 24 Apr 2006 - BrucLiong)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 16 to 16

To experience Autograph in action you can test an installation in the MAMS level 1 federation.

Changed:
<
<

Step 1: Add a user to the MAMS Public Identity Provider:

>
>

Step 1: Add a user to the testfed openidp:


Changed:
<
<
  • Go to the MAMS Public Identity Provider register service and register a user by filling out the provided form.
>
>
  • Go to the MAMS Public Identity Provider register service and register a user by filling out the provided form.

Step 2: Configure your idCard with Autograph:

Changed:
<
<
  • Click on this Autograph link. When the WAYF service comes up choose the MAMS Public Identity Provider and authenticate with the credentials you provided in step 1.
>
>
  • Click on this Autograph link. When the WAYF service comes up choose the testfed openidp and authenticate with the credentials you provided in step 1.

  • Select a Service Provider you want to configure your idCard for.
Added:
>
>		 For more details on Autograph installation, please refer to ShARPE installation.

Added:
>
>		 <!--

Installation

Line: 113 to 115

Autograph user can see the effect of the changes they make to the idCard, if Service Provider descriptions like this are added to your metadata.

Changed:
<
<
>
>		 -->

<!--

Support

Line: 134 to 136

Deleted:
<
<
META FILEATTACHMENT BusinessCard?.gif attr="h" comment="Autograph Business Card" date="1140149611" path="BusinessCard.gif" size="7706" user="BrucLiong" version="1.1"
META FILEATTACHMENT AutographMain?.jpg attr="h" comment="autograph main" date="1143686509" path="AutographMain.jpg" size="19553" user="MoritzTheile" version="1.2"
META FILEATTACHMENT PhysicsGold?.jpg attr="h" comment="" date="1140149911" path="PhysicsGold.jpg" size="91006" user="BrucLiong" version="1.1"
META FILEATTACHMENT PhysicsSilver?.jpg attr="h" comment="Physics as Silver" date="1140150003" path="PhysicsSilver.jpg" size="89990" user="BrucLiong" version="1.1"
META FILEATTACHMENT TestPageAttsPhysicsuser1?.jpg attr="h" comment="Test page as Physics" date="1140150020" path="TestPageAttsPhysicsuser1.jpg" size="65272" user="BrucLiong" version="1.1"
META FILEATTACHMENT smartAttributeRelease_v0.82.pdf attr="h" comment="This document contains a detailed example of using Autograph." date="1140158694" path="smartAttributeRelease_v0.82.pdf" size="256599" user="MoritzTheile" version="1.1"
META FILEATTACHMENT Autograph.ppt attr="h" comment="An overview of Autograph." date="1141187589" path="Autograph.ppt" size="528896" user="MoritzTheile" version="1.2"
META FILEATTACHMENT Autograph.jpg attr="h" comment="" date="1141186152" path="Autograph.jpg" size="17729" user="MoritzTheile" version="1.1"
META FILEATTACHMENT Autograph.war attr="h" comment="The web application archiv." date="1143686768" path="Autograph.war" size="6466650" user="MoritzTheile" version="1.3"
META FILEATTACHMENT IdPManagementSuite_small.jpg attr="h" comment="" date="1141873962" path="IdP Management Suite_small.jpg" size="15880" user="MoritzTheile" version="1.1"
META FILEATTACHMENT level-1-metadata.xml attr="" comment="example for SAML 2.0 metadata with extension" date="1143688740" path="level-1-metadata.xml" size="82563" user="MoritzTheile" version="1.1"
META FILEATTACHMENT saml-schema-metadata-ext-servicedescription.xsd attr="" comment="Schema for the SAML 2.0 metadata extension" date="1143688800" path="saml-schema-metadata-ext-servicedescription.xsd" size="1944" user="MoritzTheile" version="1.1"
 <<O>>  Difference Topic AutographView (r1.17 - 30 Mar 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Changed:
<
<

Autograph Screenshot

>
>

Autograph Screenshot

The internet is basically anonymous, so when you need to access a protected service over the internet, it first needs to find out who you are. Within your institution, this is solved by logging into your local account, after which all your personal information (name, email, telephone, etc.) is available to the service. This works well as long as we stay within this context. However, in case a service is offered by another institution, this is not possible anymore, as your personal information is generally not shared with external parties.

Line: 16 to 16

To experience Autograph in action you can test an installation in the MAMS level 1 federation.

Changed:
<
<

Step 1: Add a user to the Open IDP Identity Provider:

>
>

Step 1: Add a user to the MAMS Public Identity Provider:


Changed:
<
<
  • Go to the Open IDP register service and register a user by filling out the provided form.
>
>
  • Go to the MAMS Public Identity Provider register service and register a user by filling out the provided form.

Step 2: Configure your idCard with Autograph:

Changed:
<
<
  • Click on this Autograph link. When the WAYF service comes up choose the Open IDP and authenticate with the credentials you provided in step 1.
  • Select a Service Provider you want to configure your idCard for. (Some Service Provider (e.g. Workshop Machine) have a detailed Service Provider description which gives Autograph the possiblitiy to provide more functionality.)
>
>
  • Click on this Autograph link. When the WAYF service comes up choose the MAMS Public Identity Provider and authenticate with the credentials you provided in step 1.
  • Select a Service Provider you want to configure your idCard for.

Deleted:
<
<		 <!--

Installation

Autograph is a lightweight web application and should be easy to install. It requires an installed Shibboleth Identity Provider. These instructions assume that you have an IdP setup as it is described in this manual.

Line: 40 to 40
  • (Re-)Start tomcat so that the war-archive gets unpacked.

Step 2: adapting parameters in the web.xml file

Changed:
<
<
  • Change the context parameter ResolverFile and ARPFileDirectory in the TOMCAT_HOME/webapps/Autograph/WEB-INF/web.xml according to your environment.
>
>
  • Change the context parameter ResolverFile in the TOMCAT_HOME/webapps/Autograph/WEB-INF/web.xml. (e.g. /usr/local/shibboleth-idp/etc/resolver.ldap.xml)
  • Change the context parameter ARPFileDirectory in the TOMCAT_HOME/webapps/Autograph/WEB-INF/web.xml. (e.g. /usr/local/shibboleth-idp/etc/arps/)
  • Change the context parameter MetadataFileLocation in the TOMCAT_HOME/webapps/Autograph/WEB-INF/web.xml. (e.g. /usr/local/shibboleth-idp/etc/schemas/level-1-metadata.xml)

  • Only required if using crosswalk module: Change the context parameter CrosswalkConfigFile and MapperFileDirectory in the TOMCAT_HOME/webapps/Autograph/WEB-INF/web.xml according to your environment.
Deleted:
<
<
  • (Re-)Start tomcat.

Step 3: protecting the Autograph application

  • add the following lines to the /etc/apache2/workers2.properties file.
Line: 51 to 54

  • add the following lines to the file /etc/apache2/sites-enabled/003-ssl-vhost.conf. Change the LDAP configuration according to your environment. 
     <Location /Autograph/*>
Changed:
<
<		 AuthType? Basic AuthName? "Shibboleth IdP Authentication" AuthLDAPBindDN? uid=binduser,ou=demo,dc=mams,dc=org,dc=au AuthLDAPBindPassword? "test" AuthLDAPURL? "ldap://idp-ldap.mams.org.au:389/ou=demo,dc=mams,dc=org,dc=au?uid?sub?(objectClass=*)"
>
>		 AuthType? shibboleth ShibRequireSession? On

require valid-user </Location>

Step 3: testing the Autograph application

Changed:
<
<
  • restart apache
>
>
  • (Re-)Start tomcat.
  • (Re-)Start apache.

  • use a browser to open the url https://YOUR_IDP_DOMAIN/Autograph/Login
Added:
>
>
  • Sign in using Shibboleth.
  • In the drop down menu should be a list of all Service Providers described by your metadata.
  • To use more advances features please have a look at the following Setup section that describes the metadata extension.

Setup

Autograph needs more detailed information about Service Providers than it is provided in the standard SAML 2.0 metadata. For this reason MAMS created an extension for the metadata. You can find the SAML 2.0 metadata extension here and an example instantiation here.

If you want to use Autograph's full functionality you have to add <Service> elements like shown here: 

   <EntityDescriptor entityID="urn:mace:federation.org.au:testfed:level-1:workshop.mams.org.au">
      <Extensions>
         <Service xmlns="urn:mace:federation.org.au:SAML:2.0:metadata:extension" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="urn:mace:federation.org.au:SAML:2.0:metadata:extension saml-schema-metadata-ext-servicedescription.xsd urn:oasis:names:tc:SAML:2.0:assertion saml-schema-assertion-2.0.xsd">
            <ServiceName xml:lang="en">Picture Gallery Service</ServiceName>
            <ServiceLocation>https://workshop.mams.org.au/UniversityOfArt/PictureGallery.jsp</ServiceLocation>
            <ServiceDescription xml:lang="en">A large repository of pictures.</ServiceDescription>
            <ServiceFeature>
               <ServiceFeatureName xml:lang="en">download</ServiceFeatureName>
               <ServiceFeatureDescription xml:lang="en">This Service Feature offers the functionality to download pictures in high resolution.</ServiceFeatureDescription>
               <md:RequestedAttribute Name="urn:mace:dir:attribute-def:eduPersonAffiliation" FriendlyName="community">
                  <saml:AttributeValue>Staff</saml:AttributeValue>
               </md:RequestedAttribute>
               <md:RequestedAttribute Name="urn:mace:dir:attribute-def:givenName" FriendlyName="givenName"/>
               <md:RequestedAttribute Name="urn:mace:dir:attribute-def:sn" FriendlyName="surname"/>
            </ServiceFeature>
            <ServiceFeature>
               <ServiceFeatureName xml:lang="en">search</ServiceFeatureName>
               <ServiceFeatureDescription xml:lang="en">This Service Feature offers search functionality.</ServiceFeatureDescription>
               <md:RequestedAttribute Name="urn:mace:dir:attribute-def:eduPersonAffiliation" FriendlyName="community"/>
            </ServiceFeature>
         </Service>
      </Extensions>
      <AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
         ...
      </AttributeAuthorityDescriptor>
      <SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
         ...
      </SPSSODescriptor>
      <Organization>
         ...
      </Organization>
      <ContactPerson contactType="technical">
         ...
      </ContactPerson>
   </EntityDescriptor>

Added:
>
>		 Autograph user can see the effect of the changes they make to the idCard, if Service Provider descriptions like this are added to your metadata.

Changed:
<
<
>
>		 <!--

Support

Line: 85 to 135

META FILEATTACHMENT BusinessCard?.gif attr="h" comment="Autograph Business Card" date="1140149611" path="BusinessCard.gif" size="7706" user="BrucLiong" version="1.1"
Changed:
<
<
META FILEATTACHMENT AutographMain?.jpg attr="h" comment="autograph main" date="1140149801" path="AutographMain.jpg" size="190617" user="BrucLiong" version="1.1"
>
>
META FILEATTACHMENT AutographMain?.jpg attr="h" comment="autograph main" date="1143686509" path="AutographMain.jpg" size="19553" user="MoritzTheile" version="1.2"

META FILEATTACHMENT PhysicsGold?.jpg attr="h" comment="" date="1140149911" path="PhysicsGold.jpg" size="91006" user="BrucLiong" version="1.1"
META FILEATTACHMENT PhysicsSilver?.jpg attr="h" comment="Physics as Silver" date="1140150003" path="PhysicsSilver.jpg" size="89990" user="BrucLiong" version="1.1"
META FILEATTACHMENT TestPageAttsPhysicsuser1?.jpg attr="h" comment="Test page as Physics" date="1140150020" path="TestPageAttsPhysicsuser1.jpg" size="65272" user="BrucLiong" version="1.1"
META FILEATTACHMENT smartAttributeRelease_v0.82.pdf attr="h" comment="This document contains a detailed example of using Autograph." date="1140158694" path="smartAttributeRelease_v0.82.pdf" size="256599" user="MoritzTheile" version="1.1"
META FILEATTACHMENT Autograph.ppt attr="h" comment="An overview of Autograph." date="1141187589" path="Autograph.ppt" size="528896" user="MoritzTheile" version="1.2"
META FILEATTACHMENT Autograph.jpg attr="h" comment="" date="1141186152" path="Autograph.jpg" size="17729" user="MoritzTheile" version="1.1"
Changed:
<
<
META FILEATTACHMENT Autograph.war attr="h" comment="" date="1141945405" path="Autograph.war" size="6161797" user="MoritzTheile" version="1.2"
>
>
META FILEATTACHMENT Autograph.war attr="h" comment="The web application archiv." date="1143686768" path="Autograph.war" size="6466650" user="MoritzTheile" version="1.3"

META FILEATTACHMENT IdPManagementSuite_small.jpg attr="h" comment="" date="1141873962" path="IdP Management Suite_small.jpg" size="15880" user="MoritzTheile" version="1.1"
Added:
>
>
META FILEATTACHMENT level-1-metadata.xml attr="" comment="example for SAML 2.0 metadata with extension" date="1143688740" path="level-1-metadata.xml" size="82563" user="MoritzTheile" version="1.1"
META FILEATTACHMENT saml-schema-metadata-ext-servicedescription.xsd attr="" comment="Schema for the SAML 2.0 metadata extension" date="1143688800" path="saml-schema-metadata-ext-servicedescription.xsd" size="1944" user="MoritzTheile" version="1.1"
 <<O>>  Difference Topic AutographView (r1.16 - 29 Mar 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 14 to 14

Autograph in Action

Changed:
<
<		 To experience Autograph in action you can configure an Identity Provider in the MAMS level 1 federation. Click this Autograph link, choose 'Workshop Machine' as Identity Provider and use (Sue,test) or (Hans,test) for authentification.
>
>		 To experience Autograph in action you can test an installation in the MAMS level 1 federation.

Added:
>
>

Step 1: Add a user to the Open IDP Identity Provider:

  • Go to the Open IDP register service and register a user by filling out the provided form.

Step 2: Configure your idCard with Autograph:

  • Click on this Autograph link. When the WAYF service comes up choose the Open IDP and authenticate with the credentials you provided in step 1.
  • Select a Service Provider you want to configure your idCard for. (Some Service Provider (e.g. Workshop Machine) have a detailed Service Provider description which gives Autograph the possiblitiy to provide more functionality.)

<!--


Installation

Autograph is a lightweight web application and should be easy to install. It requires an installed Shibboleth Identity Provider. These instructions assume that you have an IdP setup as it is described in this manual.

Line: 69 to 80

* smartAttributeRelease_v0.82.pdf: This document contains a detailed example of using Autograph.

Changed:
<
<

>
>		 -->

Line: 79 to 90
META FILEATTACHMENT PhysicsSilver?.jpg attr="h" comment="Physics as Silver" date="1140150003" path="PhysicsSilver.jpg" size="89990" user="BrucLiong" version="1.1"
META FILEATTACHMENT TestPageAttsPhysicsuser1?.jpg attr="h" comment="Test page as Physics" date="1140150020" path="TestPageAttsPhysicsuser1.jpg" size="65272" user="BrucLiong" version="1.1"
META FILEATTACHMENT smartAttributeRelease_v0.82.pdf attr="h" comment="This document contains a detailed example of using Autograph." date="1140158694" path="smartAttributeRelease_v0.82.pdf" size="256599" user="MoritzTheile" version="1.1"
Changed:
<
<
META FILEATTACHMENT Autograph.ppt attr="" comment="An overview of Autograph." date="1141187589" path="Autograph.ppt" size="528896" user="MoritzTheile" version="1.2"
META FILEATTACHMENT Autograph.jpg attr="" comment="" date="1141186152" path="Autograph.jpg" size="17729" user="MoritzTheile" version="1.1"
META FILEATTACHMENT Autograph.war attr="" comment="" date="1141945405" path="Autograph.war" size="6161797" user="MoritzTheile" version="1.2"
META FILEATTACHMENT IdPManagementSuite_small.jpg attr="" comment="" date="1141873962" path="IdP Management Suite_small.jpg" size="15880" user="MoritzTheile" version="1.1"
>
>
META FILEATTACHMENT Autograph.ppt attr="h" comment="An overview of Autograph." date="1141187589" path="Autograph.ppt" size="528896" user="MoritzTheile" version="1.2"
META FILEATTACHMENT Autograph.jpg attr="h" comment="" date="1141186152" path="Autograph.jpg" size="17729" user="MoritzTheile" version="1.1"
META FILEATTACHMENT Autograph.war attr="h" comment="" date="1141945405" path="Autograph.war" size="6161797" user="MoritzTheile" version="1.2"
META FILEATTACHMENT IdPManagementSuite_small.jpg attr="h" comment="" date="1141873962" path="IdP Management Suite_small.jpg" size="15880" user="MoritzTheile" version="1.1"
 <<O>>  Difference Topic AutographView (r1.15 - 23 Mar 2006 - MoritzTheile)
META TOPICPARENT ShARPE

Autograph - a privacy management tool

Line: 39 to 39

 info=Autograph

  • add the following lines to the file /etc/apache2/sites-enabled/003-ssl-vhost.conf. Change the LDAP configuration according to your environment.
Changed:
<
<
>
>		 
     <Location /Autograph/*>

AuthType? Basic AuthName? "Shibboleth IdP Authentication" AuthLDAPBindDN? uid=binduser,ou=demo,dc=mams,dc=org,dc=au AuthLDAPBindPassword