We are finishing a 2 week sprint on COIP that has resulted in many
improvements. Notable changes:
- The permissions framework for groups has seen a lot of work. This includes the ability to limit group "visibility" to groups of serviceproviders. This is accomplished by allowing groups to consist of both services and users. This also allows group owners to have control of account linking so that (for instance) a group is only visible if you login from a certain set of IdPs (eg excluding low-assurance IdPs).
- The UI is (at least in our opinion) much less cryptic now. Clear text boxes and buttons have replaced most icons which makes the UI much more self-explanatory. We've also introduced wizards for some of the bigger forms making them much less intimidating.
- We have done integration with the SUNET media distribution service to discover any deficiencies in the COIP model. We were pleased to find very few issues but as a result of this experience COIP will soon have a JS widget-library for rendering a "group selector" widget.
- The invitation-system has been complemented with the ability to directly add users to a group including the ability to add yourself to groups where you are permitted to do so. In order to keep the user informed about changes to her membership COIP sends email when a users joins or leaves a group.