| Time |
S |
Nick |
Message |
| 00:05 |
|
|
shrink0r_ joined #rest |
| 00:28 |
|
|
shrink0r joined #rest |
| 02:01 |
|
|
_ollie joined #rest |
| 02:25 |
|
|
shrink0r_ joined #rest |
| 02:27 |
|
|
shrink0r joined #rest |
| 02:40 |
|
|
shrink0r_ joined #rest |
| 03:03 |
|
|
_ollie joined #rest |
| 03:08 |
|
pdurbin |
whartung: comments are enabled if I'm misrepresenting you :) https://docs.google.com/document/d/1DdLVuh8_e_2DINO1xCTj28h35cAwnD0QdevOnEuTo_I/edit?usp=sharing |
| 03:12 |
|
|
baweaver joined #rest |
| 03:29 |
|
|
shrink0r joined #rest |
| 03:32 |
|
|
shrink0r_ joined #rest |
| 04:04 |
|
|
_ollie joined #rest |
| 06:06 |
|
|
_ollie joined #rest |
| 07:02 |
|
|
_ollie joined #rest |
| 07:40 |
|
|
graste joined #rest |
| 07:44 |
|
|
interop_madness joined #rest |
| 08:30 |
|
|
_ollie joined #rest |
| 08:32 |
|
|
Left_Turn joined #rest |
| 08:33 |
|
|
shrink0r joined #rest |
| 08:40 |
|
|
Left_Turn joined #rest |
| 08:56 |
|
|
quimrstorres joined #rest |
| 09:02 |
|
|
quimrstorres joined #rest |
| 09:43 |
|
|
rosstuck joined #rest |
| 09:50 |
|
|
mezod joined #rest |
| 11:48 |
|
|
StatelessCat joined #rest |
| 12:55 |
|
|
quimrstorres joined #rest |
| 13:01 |
|
|
fumanchu joined #rest |
| 14:00 |
|
|
nkoza joined #rest |
| 14:43 |
|
|
mezod joined #rest |
| 14:51 |
|
|
Mxyzpltk joined #rest |
| 15:32 |
|
|
quimrstorres joined #rest |
| 15:44 |
|
|
quimrstorres joined #rest |
| 16:14 |
|
|
baweaver joined #rest |
| 17:16 |
|
whartung |
pdurbin: that looks fine. I don't support multiple IdPs cuz we've not seen a need for it, and for really compliacted federation scenarios, we proxy all that behind our main IdP. Support multiple IdPs is basically a matter of configuring certs to hosts for validation, and then dealing with any user provisioning issues. So, it's not, necessarily, a big deal (user provisioning is always a black hole, so that has a big fat IT DEPEND embossed |
| 17:16 |
|
whartung |
it...) |
| 17:27 |
|
whartung |
Firefox is refusing to load images today…after 2 restarts >.< |
| 17:28 |
|
pdurbin |
whartung: ok. thanks. so if you had to support hundreds of IdPs you're saying it's not a big deal. |
| 17:28 |
|
whartung |
if they hit the IdP first, then it's easier. Then you simply need to trust each one, and deal with provisioning. |
| 17:29 |
|
whartung |
If they hit your app first, then your app needs a way to select which idp to delegate too |
| 17:29 |
|
whartung |
so that's an extra step |
| 17:29 |
|
whartung |
and can be done in different ways |
| 17:30 |
|
pdurbin |
users hit our app first. they they see a "picker" like this ("select your institution"): https://shibtest.dataverse.org/loginpage.xhtml |
| 17:30 |
|
whartung |
pop up a form, specify your idp as a parameter, some have a proxy stick a header in the request saying where they're from, so you can use that, you can use routing based on source IP, bla bla bla |
| 17:30 |
|
whartung |
yea ok |
| 17:30 |
|
whartung |
set a cookie after that so you don't get it again :) |
| 17:30 |
|
pdurbin |
"discovery" this is called in the shibboleth world. we use https://shibboleth.net/products/embedded-discovery-service.html which is a bit of javascript |
| 17:30 |
|
pdurbin |
(EDS) |
| 17:31 |
|
whartung |
yea that's nice |
| 17:33 |
|
pdurbin |
EDS remembers the IdP you logged in with so you don't have to find it in the long list next time |
| 17:33 |
|
pdurbin |
(until you clear your browser history) |
| 17:33 |
|
pdurbin |
(or cookies or however it works) |
| 17:33 |
|
whartung |
it uses browser history? |
| 17:33 |
|
whartung |
oh |
| 17:33 |
|
pdurbin |
probably a cookie, I don't know |
| 17:33 |
|
pdurbin |
off the shelf software for the win :) |
| 17:34 |
|
whartung |
so I'm told! lol |
| 17:35 |
|
* whartung |
has written dns, smtp, ldap, transaction systems, etc. etc. etc…. |
| 17:36 |
|
whartung |
I haven't written a database yet…I wrote a garbage collector too |
| 17:37 |
|
|
fumanchu_ joined #rest |
| 17:39 |
|
pdurbin |
whartung: you slacker |
| 17:39 |
|
whartung |
I've heard others have written those things…. |
| 17:42 |
|
* fumanchu_ |
is writing a database |
| 17:42 |
|
whartung |
how so? |
| 17:42 |
|
fumanchu_ |
one line at a time :) |
| 17:42 |
|
whartung |
:) |
| 17:43 |
|
fumanchu_ |
http://www.crunch.io/ |
| 17:46 |
|
pdurbin |
fumanchu_: neat! |
| 17:46 |
|
fumanchu_ |
we needed something that could manage 10K columns and still correlate millions of rows in a few milliseconds. nothing out there like that. Vertica/HANA come close but are still too expensive (latency or $) |
| 17:47 |
|
whartung |
HANA? |
| 17:47 |
|
fumanchu_ |
SAP's in mem DB |
| 17:47 |
|
whartung |
ah\ |
| 17:50 |
|
pdurbin |
I know a guy who was at Vertica for a bit. |
| 18:02 |
|
|
sfisque joined #rest |
| 18:52 |
|
|
whartung joined #rest |
| 19:13 |
|
|
shrink0r joined #rest |
| 19:59 |
|
|
quimrstorres joined #rest |
| 20:11 |
|
|
_ollie joined #rest |
| 20:14 |
|
|
quimrstorres joined #rest |
| 21:05 |
|
|
quimrstorres joined #rest |
| 21:13 |
|
|
quimrstorres joined #rest |
| 21:41 |
|
|
quimrsto_ joined #rest |
| 21:45 |
|
|
quimrstorres joined #rest |
| 21:48 |
|
|
quimrstorres joined #rest |
| 22:03 |
|
|
quimrstorres joined #rest |
| 22:57 |
|
|
shrink0r_ joined #rest |
| 23:33 |
|
|
mezod joined #rest |
