...

In terms of software and infrastructure, the HSPC ID System is an instance of Gluu Server, which is one of the leading fully-Open Source implementations. Gluu Server is deployed to the Platform Engineering Virtual Private Cloud on AWS and Internet accessible at at https://id.hspconsortium.org. To avoid inadvertent circle dependencies, Gluu Server is run on a dedicated Ubuntu Server VM.

Rough Project Tasks

1. Establish Gluu Server
   1. Set up in Platform VPC
   2. test heavily Either set up a new common IDP or use one of the existing instances.
2. Migrate HSPC Sandbox to the new IDP.
   1. Need help from Travis with this one  ... Hopefully some combination of adding the IDP configuration and migrating existing user accounts.
3. Enable AWS to support SSO login.
   1. Update AWS IAM group policies
   2. SAML probably
   3. Remove unneeded users
   4. Account for lock-out situations (since Gluu is hosted on AWS)
4. Reconfigure the WEBSITE to use the IDP in additional to local authentication.
   1. Evaluate and install membership management plugin(s), such as MemberPress.
   2. Add IDP configuration
   3. Possibly relocate hosting situation
   4. Add MSP support and configure applicable hooks to IDP 
5. Migrate Marketplace to the new IDP
   1. Probably disable the Google and Microsoft login options.
   2. Re-authorize existing accounts
6. Configure terminology servers to support authenticated and authorized access.
   1. Ontoserver
   2. HAPI-FHIR
7. Document all this

...