NDG SAML

NDG SAML is a Python implementation of SAML 2.0 developed for the [NERC DataGrid?  http://ndg.nerc.ac.uk/] and [Earth System Grid  http://www.earthsystemgrid.org] [CMIP5  http://cmip-pcmdi.llnl.gov/cmip5/] security. architecture. Both use a federation model for access control and SAML 2.0 was selected to provide the interfaces for attribute and authorisation decision queries. This implementation is based on the Java [OpenSAML www.opensaml.org/] code.

The code uses ElementTree for serialisation to and parsing from XML but an API makes it easily extendable to use other Python XML parsers if desired.

Repository

 http://proj.badc.rl.ac.uk/ndg/browser/TI12-security/trunk/ndg_saml

Installation

The code is available on PyPI at  http://pypi.python.org/pypi/ndg-saml/0.4.

$ sudo easy_install ndg_saml

Unit Tests

Development Status

Development has focussed on the Assertion Query/Request? Profile to support AttributeQuery? and AuthzDecisionQuery? as needed for NDG and ESG. Where possible code stubs have been provided for the other core classes.

SOAP client and server (WSGI based) binding code has been developed for SOAP transport but have not yet been merged from the NDG Security development trunk. See:

•  http://proj.badc.rl.ac.uk/ndg/browser/TI12-security/trunk/NDGSecurity/python/ndg_security_common/ndg/security/common/saml_utils/binding/soap
•  http://proj.badc.rl.ac.uk/ndg/browser/TI12-security/trunk/NDGSecurity/python/ndg_security_server/ndg/security/server/wsgi/saml/__init__.py