You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 12 Next »

This page is a scratchpad for ongoing discussion at syncope-dev@incubator.apache.org

Features

Security

  1. Authentication chain (GoogleCode issue 274)
  2. Pluggable authentication modules (GoogleCode issue 274)
  3. Realm-based authorization (GoogleCode issue 272, Mail thread 1, Mail thread 2)
  4. PDC-based authentication (GoogleCode issue 96)
  5. Passthrough authentication (GoogleCode issue 273)
  6. Delegation (GoogleCode issue 102)
  7. Enhance password management (GoogleCode issue 218)
    1. Policy-compliant random password generation
    2. Password change on an external resource only
    3. Password reset
    4. One-time password
  8. Password required for resource subscription (GoogleCode issue 264, Mail thread)
  9. Remove MD5 as a supported password cipher algorithm (SYNCOPE-51)

ConnId

  1. Support more than one local connector bundles directory and zero or more ConnId's connector servers (GoogleCode issue 168)
  2. Scripted SQL connector bundle (GoogleCode issue 277)
  3. Investigate support for OpenICF connector bundles

Notification

  1. Allow more notification mechanisms besides e-mail
  2. Introduce notification chains

Roles

  1. Role/membership attributes synchronization (SYNCOPE-26)
  2. Add ability to search for Roles via the REST API (SYNCOPE-44)
  3. Dynamic role memberships (GoogleCode issue 219)
  4. Role propagation / synchronization (GoogleCode issue 22)
  5. Role workflow (GoogleCode issue 23)
  6. Assign membership and role schemas to either all memberships / roles or only some memberships / roles

REST

  1. Don't expose some REST list methods for anonymous (currently needed for self-registration)
  2. Easier and cleaner way to override REST methods (for WAR overlays)
  3. Rich client library, hiding REST call details (GoogleCode issue 104)
  4. Enlist RESTful methods (GoogleCode issue 250)

Management

  1. JMX support (GoogleCode issue 95)
  2. Upgrade tools (GoogleCode issue 98)
  3. Command-line tool to manipulate configuration (GoogleCode issue 28)
  4. GUI installer (GoogleCode issue 99)
  5. End-user JSR-286 portlet (GoogleCode issue 103)
  6. Android / iPhone end-user app (GoogleCode issue 107)

General improvements

  1. Manage creator, lastmodifier and approvers information about each SyncopeUser bean (SYNCOPE-15)
  2. Virtual attribute cache (GoogleCode issue 276)
  3. Better way to override console components (for WAR overlays)
  4. Avoid duplication in console's authorization management
  5. Refresh button in console task modal windows (GoogleCode issue 248)
  6. Cancel button for console modal windows
  7. General console code reorganization
  8. Provide Task entities a name and an optional description
  9. Allow user, role and membership properties (like as id and name, for example) to be used in derived schema definition

Improve documentation

  1. Self-registration
  2. REST interface (GoogleCode issue 250)
  3. Derived and Virtual attribute use cases

Access Management

  1. Investigate using Apache Shiro to provide Syncope AM features
  2. Add functionality to map a role to a "resource", which is a String or URI. There may also be a permission associated with this mapping such as "read", "write" or "execute", etc. In this way we can use Syncope to see whether the authenticated user has the correct permissions to access a local resource.

Bulk processing

  1. Add support for "bulk" operations via the REST API. For example, creating/deleting/reading a set of users/roles/resources with one operation.
    Since bulk operations apply for huge number of entries, take care in dividing responsibilities between REST controllers and REST client code

Propagation

  1. Add the possibility to execute propagations in parallel. Consider that we must continue to propagate towards primary resources sequentially, in respect of the specified priority. May be propagations towards non-primary resources can be executed sequentially in respect of the priorities specified and in parallel in case of resources with the same priority.
  2. Modify propagation mechanism in order to avoid to propagate useless update operations in case of no changes happened. By adding this feature we should resolve problems related to circular synchronization calls.

Versions

  • 2.0 Virtuoso
  • 2.1 Soave
  • 2.2 Diesis
  • No labels

Questions? Just send an e-mail to user@syncope.apache.org