SAFIRE’s website was originally created using Wordpress, something that was inherited when custodianship of the federation passed to TENET. For various reasons we have decided to abandon Wordpress in favour of a modern static site generator, and have chosen to adopt Hugo.
One substantial benefit of this approach is increased transparency, particularly around changes to policies. The Hugo source is stored in a public GitHub repository, thus allowing Participants to peruse the commit history of any document.
…
North West University (NWU) has signed the Participation Agreement and joined SAFIRE as a full participant. NWU completed technical integration some time ago, and so are able to immediately take advantage of the services provided by their federation. Their first login happened within ten minutes of updated metadata being published.
In our ongoing work to integrate library journal and platform providers, it has become apparent that we need to support the eduPersonEntitlement attribute. Support for this attribute has therefore been added to the Federation hub, as well as the test identity and service providers.
To ease transition and to lower barriers to entry, the Federation hub may automatically generate a value for eduPersonEntitlement from eduPersonAffilation if none is supplied by the identity provider. Details of this are in the attribute definition. (You can avoid having eduPersonEntitlement auto-generated by supplying more accurate value(s).)
…
At 00:00 SAST on 1 August 2017, the remaining entities in the old metadata aggregate at
https://discservice.sanren.ac.za/safire.xml
will expire. Any provider who still has mention of the above URL in their configuration should remove it, as it will not be supported beyond the end of the month.
…
The University of Cape Town recently became the first SAFIRE identity provider to complete a self-assessment and express its compliance with the REFEDS Security Incident Response Trust Framework for Federated Identity (Sirtfi). This makes SAFIRE the 16th federation worldwide to assert a Sirtfi-compliant IdP.
…
The University of the Witwatersrand has signed the Participation Agreement and joined SAFIRE. They have not yet completed the SAML technical integration, but we hope to welcome them on board as a fully functioning identity provider in the near future.
As a courtesy, we monitor the reachability of the various South African identity providers and make that information available at monitor.safire.ac.za.
The monitoring system initiates a single sign-on request, and reports the outcome as follow:
Green means that we completed all the tests and found something that looked like a login page.
Yellow means that we got as far as what we think should be a login page, but didn’t find a username field on it. The institution’s own monitoring or I.T. help desk may be able to provide more information.
Red means that we weren’t able to contact the identity provider for some reason. This could be because there’s a network problem or that the there’s some problem with the identity provider (service not running, certificates expired, metadata expired, etc).
The monitoring output shows the hosts we passed through on the way to what we believe is the login page. It may also give details of any problem(s) that were encountered.
…
The SAFIRE transition plan has been updated to set an explicit end-of-life for the deprecated full-mesh federation. All existing identity providers within the full-mesh metadata will expire shortly after midnight on 1 July 2017.
Service provider entities will remain for a bit longer, and decision to expire them will be based on the volume of logins we see through the transitional hub provider. However, the target date for this is 31 July 2017.
…
The Council for Scientific and Industrial Research (CSIR) has signed the Participation Agreement and joined SAFIRE as a full participant. The SANReN Competency Area at the CSIR incubated the SAFIRE project for several years, and we are delighted to formally welcome them into the Federation that they were so integral in establishing.