Crowd : 0.2 - FAQ
This page last changed on Feb 25, 2007 by justen.stepka@atlassian.com.
IntroductionCrowd is an application security framework that handles authentication and authorisation for your web-applications. With Crowd you can quickly integrate web applications into a single security architecture that supports single sign-on and centralised identity management. The application is divided into two parts:
Designed for ease of use, Crowd can be deployed with your existing infrastructure. Crowd supports Java, .NET and PHP. An unlimited number of directories can be configured. The directory servers can then be linked together providing applications with a single view to multiple directories. What is the difference between Authentication and Authorisation?
What are Crowd's current integration points?Built In ConnectorsDirectory Servers
Software
Keep an eye out — more connectors to come! Does the product include kerberos integration?No, but we plan to add support for kerberos-based authentication for clients to authenticate verses the security framework. The current roadmap does not have this specifically stubbed out but over the next few weeks we'll be hammering out something more specific. Currently the Crowd framework supports a generic Credentials object that can be adapted to support any number of authentication approaches such as three-factor authentication. Does Crowd support SAML or Liberty Alliance?SAML is a standard that was developed by several large companies for federated identity management. Similarly, Liberty Alliance is a consortium formed to develop and define federated identity management standards and protocols. In our opinion, for the 98% of businesses who wish to enforce single sign-on, SAML specification is too complex to be truly practical. The breadth of understanding, deployment and support of these large frameworks is beyond the scope of most developers' needs or their ability to manage. Most developers and IT managers need a solution that is simple and cost effective to deploy. Crowd was developed as a practical, simple and secure alternative for identity management and single-sign on across an unlimited number of web-based applications.
|
![]() |
Document generated by Confluence on Mar 08, 2007 18:49 |