Diana Antova met with Matt Hall to talk further about Apigee and Heroku. Matt has asked Katie Mankins to document the need for a development platform and possible options, so we can discuss with campus app dev management - Masha, Yaheya, Josh Andersen.
Diana Antova Matt asked Katie to start looking at Apigee from a production support point of view, and Diana shared the confluence space and the roadmap with her.
identity is willing to make modifications to accommodate Apigee service accounts.
they want a list of attributes for the service accounts.
JWT tokens - Yaheya is supportive
Identity is starting to work on the backlog for their system. Upgrading the version of CAS is on the list. it will take a while to get the functionality we need implemented.
We want the campus oauth so we can authenticate the actual user. If we use Apigee's we cannot authenticate the user, just the application.
as long as it is a server app, we don't need to authenticate the user. For mobile app and web application we will need to authenticate the use as the account can be hacked.
decision: we wait for campus oAuth. it will give users one application account, versus one with ldap and one with apigee. it will give us a way to trust the authenticated user.
Jira tickets review
Service Account
Attributes we want on it
ucsbCampusId
Department
Contact Name (probably primary person responsible)