Andrewj.comObserver
Architect
Developer
Photographer
Traveller
Writer
Reviewer
Thoughts on the World
    • Welcome PageArchitectDeveloperPhotographerTravellerWriterObserverReviewerLinks

Yodel Identity Management for Development for Yodel Ltd.

Development Case Study: Development for Yodel Ltd.

Summary

Complete, working design for a federated identity management system integrating Active Directory and OpenLDAP

Description

Like other similar organisations, Yodel have a relatively small central workforce staffing the administrative functions and sort centres, and a large number of drivers making deliveries. The latter are a mix of employees, contractors and the self-employed. They only require very limited systems access, typically to one or two mobile applications delivered via hand-held terminal devices (HHTs).

Identity management across Yodel’s core systems was managed using Microsoft Active Directory, but it was too expensive to extend this to all drivers. Yodel therefore asked me to look at a federated solution, using OpenLDAP for driver and similar accounts. This would need to support a complex role structure, and be fully integrated with existing on-boarding and off-boarding processes.

I developed a solution around a pair of microservices, one handling the interactions with OpenLDAP and Active Directory, another handling the user and role data and interactions with Oracle.

I created a fully worked-up design, including details such as the authentication process for HHTs. In order to make sure the design was viable I created a working test system, and documented the .NET and Java code required to perform key actions, including secure password management and audit functions.

The following shows key use cases supported by the solution:

Problems and Challenges

Complexities around using the federated accounts with Oracle applications Requirement for both simple "job roles" and more granular detailed access roles

Outcomes

Working and fully documented design ready for adoption in the next phase of development of the new core system

Timescale

October 2016 - January 2017

Tools and Technologies

Technologies: Active Directory, OpenLDAP, Oracle database, .Net and Java

Tools: Idea IntelliJ, Visual Studio, Jira/Confluence, VMWare Workstation

Abstract

A federated solution for identity management combining Active Directory and OpenLDAP, supporting a complex role structure, and fully integrated with existing on-boarding and off-boarding processes. I created a fully worked-up design with a test system and documented code required to perform key actions. 

This entry was posted in Case Study, Development. Bookmark the permalink. Posted on 13 May 2020 by Andrew - Please share: All Addthis servicesTweet thisFacebook thisLink thisYam thisShare on Google
Previous Post: Insurance Premium Breakdown
---- Next Post: TechRadar: EA Technology Visualisation

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Thoughts on the World Proudly powered by WordPress.

Main Pages

Welcome Page

Architect (Consultancy services)

Developer (Services and Products)

Photographer

Traveller

Writer (Publications and Papers)

Observer (My blog)

Reviewer

Links

Blog Contents

Post Category:

Review Type:

  • Recent Posts

    • TechRadar: EA Technology Visualisation
    • Yodel Identity Management
    • Insurance Premium Breakdown
    • Network Automation and Orchestration
    • Knowledge Base Development

  • Recent Comments

    • Nomad on The Coming Global Superstorm
    • Divitel on It’s Screen Time!
    • Mike Parnell on Camera History
    • ValueBlue on What Do I Mean by "Agile Architecture"?
    • Robert on Combining Risk Factors

    • Blog Indexes

    Favourite/Major Articles

    All Articles by Category

    All Articles by Title

    Review Index

    Search

    References to www.andrewj.com

    References to www.agilearchitect.org

    Contact Me

    Email me

    @TweetAndrewJ

    Others

    Share

    Facebook

    Google

    Twitter

    Linked In

    Yammer

    Share

    Feeds

    @TweetAndrewJ

    Thoughts on the World (Main Feed)

    Main feed (direct XML)

    Professional Blog

    Photo Blog

    Photo Album

    Review pages

    About my feeds

    © Questa Computing Ltd. 1994 - 2023:
    Questa Computing Ltd. is registered in England and Wales number:2889117.
    Registered office: Coppertrees, Forest Road, Effingham, Leatherhead, KT24 5HE
    Credits, copyright details and cookie policy