Getting to know UTORauth – Service Definitions

Service Definitions

authoritative source / Data owner

The organization that maintains the official copy of any given piece of data. Permission to view any piece of data must be given by the authoritative source / Data Owner

Kerberos

Kerberos is an authentication technology out of MIT based on a 3rd party authentication agent called a KDC. Kerberos uses secret key cryptography, and ensures that no passwords are transmitted over the network. http://web.mit.edu/kerberos/www/

LDAP

LDAP (Lightweight Directory Access Protocol) is a lightweight directory designed to provide fast read access. UTORable is an LDAP directory since day-to-day operations only include users querying for information. http://www.openldap.org/

PHP

A server-side scripting language widely used in the web-development world. http://www.php.net/

PubCookie

PubCookie is an open-source package that provides a common interface to a a number of different authentication services (like Kerberos, LDAP or NIS). There are currently modules for Apache and Microsoft IIS. The U of T Weblogin server implemented with Pubcookie. http://www.pubcookie.org

Shibboleth

Shibboleth is an open source software product that implements SAML (Security Assertion Markup Language). For more information see the following page. http://sites.utoronto.ca/security/projects/shibboleth.htm

TCard

The primary UofT photo identification smart card. http://tcard.utoronto.ca/

UTID

UTORauth’s unique identifier. Each person at the university is assigned a UTID when they appear in one of the data feeds that UTORauth receives. People do not know their UTID though; it is primarily used as a means of communication between machines.

UTORable

UTORable referrs to the LDAP directory containing a person’s state flags. It is queried in real-time to compute the authorization requirements for your application.

UTORauth

If you haven’t figured out what UTORauth is yet, this definition isn’t going to help… 🙂

UTORid

You can think of this as the public version of the UTID; it is the network ID that users will use to log into services around campus. http://www.utorid.utoronto.ca/

Weblogin

UTORauth’s central point of single-sign-on authentication. https://weblogin.utoronto.ca/