Federation registry : single gateway for managing OpenID Connect & SAML services for research communities
Federation registry : ενιαία πύλη για τη διαχείριση υπηρεσιών OpenID Connect και SAML για ερευνητικές κοινότητες
View/
Keywords
AAI Federation ; Authentication infrastructure ; OpenIdConnect ; OAuth ; SAML ; Service provider registryAbstract
Authentication and Authorization Infrastructures (AAIs) enable secure access to digital services through federated identity management. However, the process of integrating services into these infrastructures is often manual and error-prone, relying on unstructured exchanges via email or ticketing systems. This creates inefficiencies, delays, and limited traceability for both service owners and federation operators. The Federation Registry was developed to address these challenges by providing a web-based, secure, and protocol-agnostic platform for managing the complete lifecycle of service registration, reconfiguration, and deregistration. The system supports both SAML 2.0 and OpenID Connect (OIDC) protocols and integrates with multiple Identity and Access Management (IAM) systems and protocol-specific identity federation components such as Keycloak, MITREid Connect, and SimpleSAMLphp. Deployments are handled asynchronously through the ARGO Messaging System (AMS) and dedicated deployment agents, ensuring scalability and decoupling from underlying connected IAM platforms. Key features include multi-tenancy, multi-environment support, role-based access control, two-step review workflows, automated validation.