ZXIDP.org - Free and Open
IdP as a Service
- Any user, any SP can join.
|ZXID Home - Open Source IdM for the Masses - TAS3 Reference Implementation - Internet of Subjects PDS, PTM|
Circle of Trust
zxid_simple() -- Easy API for SAML
API Reference -- Every Function
ZXID Raw API
ZXID ID-WSF API
Java -- Using ZXID from Java
Net::SAML -- Using ZXID from Perl
php_zxid -- Using ZXID from PHP
FAQ -- Frequently Asked Questions
QA & Test Coverage
LCOV Report on 0.73 (20101219)
TAS3 Architecture Explained (Video, 15min)
Conor Cahill said back in 2006:
IMNSHO, better go Liberty up front and have the confidence that you do not need to upgrade later - or run two parallel systems. The Liberty (or SAML 2.0) system is comprehensive and addresses every use case anyone has thought so far. The percieved complexity is really an implementation issue and not underlying property of the spec. Since we provide an implementation, the "complexity" is not customer problem.
Scott Cantor and Peter Williams said on 5.11.2010 on email@example.com
Peter Williams said:I'm guessing that, in the culture that admires dumb clients, that what holds ECP (and cardspace) back is the inability to convince server vendors to commoditize this role for a browser.
What is it?
mod_auth_saml: An Apache httpd auth module that does SAML SSO. No programming, just configure Apache, see receipe. Web Master - you need this because it is a config only install, no programming.
SSO servlet and Java libzxidjni.so: A Java JNI extension that wraps libzxid. Also supplied: zxidsrvlet.java that implements SP SSO as servlet, directly integrateable with existing application under servlet engine, e.g. Tomcat.
php_zxid: A PHP extension that wraps libzxid. Also supplied: zxidhlo.php that implements SP in mod_php environment.
Net::SAML: Perl module wrapping libzxid. Also zxidhlo.pl example, implementing SP in mod_perl environment, is supplied.
zxididp: Full featured Identity Provider and Discovery Service, as deployed by ZXIDP.org
libzxid C library for SAML 2.0 federated Single Sign-On (SSO) and ID-WSF Web Services. Many other language bindings are supported through SWIG. IdM Hacker - you need this because it supports all relevant protocols, you will study it and you will contribute patches (thanks).
ZXID is the Refecence Implementation of the Core Security Architecture of TAS3.
ZXID aims at providing open source implementation of the Internet of Subjects Personal Data Store (IoS-PDS).
ZXID is member of OpenLiberty.
ZXID supports Kantara Initiative.
ZXID AXIS2 integration by ISTI-CNR LabSE.
ZXID supports strong authentication using Yubikey USB token from Yubico.
[Bertolino12] A. Bertolino, et al.: "Enhancing Service Federation Trustworthiness through Online Testing", IEEE Computer, January 2012 (vol. 45 no. 1) pp. 66-72, 2012. DOI
ZXID uses OpenSSL for all of its crypto (your distro should already have this).
ZXID uses libcurl as HTTP(S) client (your distro should already have this).
ZXID uses zlib for compression (your distro should already have this).
Full regeneration dependencies
ZXID uses Plaindoc to generate code (xsd2sg.pl) and documentation (pd2tex).
ZXID uses SWIG to generate its language bindings.
Other Projects by Sampo
SMIME utility and perl module here
Net::SSLeay perl module here.