Crowd (software)
| Developer(s) | Atlassian |
|---|---|
| Initial release | 5 April 2007 |
| Stable release | |
| Written in | Java |
| Engine | |
| Operating system | |
| Type | Collaborative software |
| License | Proprietary |
| Website | www |
Search Crowd (software) on Amazon.
Crowd is a web-based identity access management and SSO service developed by Australian software company Atlassian.[2] Atlassian wrote Crowd in the Java programming language and first published it in 2007[3]. Crowd Standalone comes with a built-in Tomcat web server and support for multiple Database platforms including PostgreSQL, MySQL, and Microsoft SQL Server.[4]
The company markets Crowd as enterprise software, licensed as either on-premises software or software as a service running on AWS.[5] Crowd has captured a small amount of market share, but is in use by notable organizations such as the United Kingdom via their UK Government G-Cloud program[6], and NASA.[7]
History
Atlassian released Crowd 1.0 on March 5, 2007, saying its purpose was to “enable[s] IT administrators and application developers to quickly integrate and deploy single sign-on using popular directories such as Microsoft Active Directory and Apple OS X Open Directory. As well as giving IT administrators a single consolidated point of user management”[3]
In recent versions, Crowd has evolved to provide tighter integration with the Atlassian software suite– with additional features including license usage reporting[8], and limited automatic group management.[9] Despite this, customer reception has been lukewarm– with some customers stating that the product lacks the feature set of other solutions.[10]
In 2017, Atlassian released Crowd 3.0 Data Center to add high availability with load balancing across nodes in a clustered setup.[11]
Security
On May 22, 2019, Atlassian released a public security advisory affecting Crowd server and data center[12][13]– CVE-2019-11580. This vulnerability allowed a malicious actor to install an arbitrary plugin to affected versions via an unauthenticated request, effectively allowing unauthenticated remote code execution (RCE).[14]
See also
- Identity management
- Identity Access Management
- List of single sign-on implementations
- SAML-based products and services
References
- ↑ "Supported Platforms". Crowd Support. Atlassian. Retrieved 2022-08-23.
- ↑ "Crowd Product Page". Atlassian. Atlassian. Retrieved 2022-08-23.
- ↑ 3.0 3.1 "Crowd Connects Web Apps, LDAP". atlassian.com. 5 March 2007. Retrieved 2022-08-23.
- ↑ "Supported Platforms". Crowd Support. Atlassian. Retrieved 2022-08-23.
- ↑ "Atlassian Standard Infrastructure on AWS". Amazon Web Services, Inc.
- ↑ "UK Digital Marketplace". digitalmarketplace.service.gov.uk.
- ↑ "Mini Orange". miniorange.com.
- ↑ "Monitoring license usage". atlassian.com. Retrieved 2022-08-23.
- ↑ "Automatically Assigning Users to Groups". atlassian.com. Retrieved 2022-08-23.
- ↑ "Why We Need to Talk About Crowd from Atlassian". isostech.com. Retrieved 2022-08-23.
- ↑ "Crowd 3.0 Release Notes". atlassian.com. Retrieved 2022-08-23.
- ↑ "CVE-2019-11580". cvedetails.com. Retrieved 2022-08-23.
- ↑ "Crowd CVE-2019-11580 bug tracking ticket CWD-5388". atlassian.com. Retrieved 2022-08-23.
- ↑ "CVE-2019-11580 proof-of-concept attack". Corben Leo. 14 July 2019. Retrieved 2022-08-23.
This article "Crowd (software)" is from Wikipedia. The list of its authors can be seen in its historical and/or the page Edithistory:Crowd (software). Articles copied from Draft Namespace on Wikipedia could be seen on the Draft Namespace of Wikipedia and not main one.
