Last updated: 
2 months 2 weeks ago
Group Manager

Project Moonshot is a Janet-led initiative, in partnership with the GÉANT project and others, to develop a single unifying technology for extending the benefits of federated identity to a broad range of non-Web services, including Cloud infrastructures, High Performance Computing & Grid infrastructures and other commonly deployed services including mail, file store, remote access and instant messaging.

The goal of the technology is to enable the management of access to a broad range of services and applications, using a single technology and infrastructure. This is expected to significantly improve the delivery of these services by providing users with a common single sign-on, for both internal and external services. Service providers will be able to more easily offer their services to users from other organisations using a single common authentication mechanism. This will enhance the user’s experience, and reduce costs for those organisations supporting users, and delivering services to them.

This group is for community of Moonshot users, whether you're new to the technology, you're currently evaluating and getting to grips with it, or you've deployed it. For the list of guidance available about Moonshot within this group, see the Start Here wiki page.

Jisc Assent, the production service underpinned by the Moonshot technology, went live on 25th March 2015. For information on, or to join the Jisc Assent service, please visit


Those of you who have been following Moonshot for a while will be aware that from the outset we have been keen to get the technology adopted as a standard. Thanks to the hard work of the Application Bridging for Federated Access Beyond web (ABFAB) Working Group of the IETF, December saw an important milestone with the publication of three Moonshot-related RFC documents:

RFC 7055

Title: A GSS-API Mechanism for the Extensible Authentication Protocol

Author: Author: S. Hartman, Ed., J. Howlett


This meeting is intended for those who are actively participating and contributing to the future technical developments of the Moonshot code and internet drafts.

The meeting will start on Monday 14th October 2013 at 12.00pm where lunch will be provided and close on Tuesday 15th October 2013 with lunch at 1.30pm.  A detailed agenda will be circulated nearer the time.

Booking Information


A Trust Router is a proposed element in an ABFAB Federation that allows information about how a Relying Party (RP) can reach an AAA Server for a specified Identity Provider (IdP) realm to be dynamically propagated throughout an ABFAB Federation. Trust Routers also provide a mechanism for dynamic key generation between a Relying Party’s AAA client and an Identity Provider’s AAA Server, over a transitive Trust Path across the Federation.  


A key part of the usability of Moonshot is a GUI tool to facilitate the selection of an identity to use for a specific access requirement. An Identity Selector has been developed and is included in the Moonshot code, but further development work is planned to improve the look and feel of the user interface. This document shows mock ups of what a redesigned UI could look like.

Prev | Next