Confusa is a system for mapping of a federated identity to a grid-compatible identity in the form of signed certificates where the subject is derived from the attributes from the federation.
master
BranchesTags
master
Cert_Manager
CryptoElement
confusa-0.3
confusa-v0.4
confusa-v0.5
confusa-v0.6
confusa-v0.7
staging
v0.3
Framework: add triggerAdmIssues() This will display warnings if different elements is not properly set. For now, it will display msg and link to fix for: - missing privacy notice - missing help - missing about NREN Signed-off-by: Henrik Austad <henrik@austad.us>
| Name | Date | Rev. | Commit message |
|---|---|---|---|
| bin | |||
| cert_handle | |||
| config | |||
| devdocs | |||
| dictionaries | |||
| extlibs | |||
| include | |||
| init | |||
| lib | |||
| modules | |||
| programs | |||
| simplesamlphp16 | |||
| templates | |||
| tests | |||
| www | |||
| .gitignore | |||
| clean_trash.sh | |||
| CONVENTIONS | |||
| COPYING | |||
| CREDITS | |||
| generate_doc.sh | |||
| INSTALL | |||
| LICENSE | |||
| README | |||
| VERSION |
README
Confusa Copyright (C) 2007,2008,2009 UNINETT Sigma A/S NDGF Confusa shall provide an easy way of creating an X.509 identity token from an existing (federated) identity. It shall do so, by providing a secure login environment for the user, a way of uploading a singing-request to the Confusa database. Note: the system *will* check all attributes in the subject of the CSR and drop the CSR if any of these attributes does not correspond with attributes obtained from the federated identity. Current attributes that are checked: - key length. Keys shorter than min_key_length in config/confusa_config.php will be discarded when the key is uploaded. - Subject in key. CommonName *must* correspond to eduPersonPrincipalName. - A certificate will never be reissued. For this reason, Confusa will check that the public-key does not belong to a previously signed certificate. The user will then be presented with a list of available (uploaded) CSRs and the opportunity to inspect, delete or approve for signing. The latter will either ship the CSR off to the Comodo CA, or to the internal signing engine (standalone mode). The signed certificate is then made available to the user, and the user can choose to download, ship it via email, delete it or revoke it. This software is provided 'as is', and the developers are, under no circumstances, responsible for any loss or corruption of data or hardware you may encounter. It is, however, presented in the most stable manner possible at this stage, and we work very hard to ensure that only stable releases reach the public domain. Please report any bugs to the developers (henrik@austad.us) The file INSTALL contains instructions to how to install and configure the system. Note that Confusa depends upon simpleSAMLphp. INSTALL also contains the software requirements Confusa pose on the system LICENSE state the license under which Confusa is released (GPLv3). Read this before you start using the system, in case it invokes any restrictions upon you as a user or organization.