This page gathers information about implementation efforts and interest, along with interoperability testing plans. Maciej Machulak is the UMA group's implementation coordinator. Key existing implementations that we know about are noted below, in alphabetical order of the project or organization.
The company ForgeRock has an Identity Platform that includes an implementation of UMA, with both an "UMA Provider" (authorization server component) and an "UMA Protector" (resource server component), targeted at both consumer and employee consent and data sharing use cases. The implementation is build on the open-source projects OpenUMA, OpenAM, and OpenIG. The case study Users Managing Delegated Access to Online Government Services was based on a POC performed with ForgeRock.
The company Gluu (also at @GluuFederation) hosts the OXAuth open-source project, to which it has contributed an UMA component. The main use case for this implementation is enterprise usage; see the Enterprise UMA case study, the March 2014 "UMA for the Enterprise" webinar slides and recording, Gluu's UMA page, and its YouTube channel for more info.
Gluu has also implemented a crowdfunded Apache server plugin that enables web apps in an Apache container to be UMA-protected.
Gluu has also proposed an "OX UMA claim profile"; for more information, see the Third-Party Profiles page.
SMART project (non-healthcare-related)
This older Java implementation includes an UMA/j framework and sample applications. See the SMART blog. The OAuth portion, originally named leeloo, was contributed to Apache Amber (now Apache Oltu, which is going to include OpenID Connect and good JWT support too). Part the SMART project involves development of set of open-source Python libraries, called Puma, for UMA-enabling web apps to become UMA resource servers and clients. Note that this SMART project is distinct from the SMART health IT initiative.
The company Cloud Identity Limited (since acquired by Synergetics) developed an UMA Authorization Server - NuveAM (Online Demo). NuveAM implements the UMA protocol and supports other open standards including OAuth 2.0, OpenID Connect, and SAML 2.0. The company also developed Java and Python SDKs. More information is on the company's website and the company's YouTube channel. The company integrated UMA with its NuveLogin service to simplify the flow for Resource Server and Client applications.
The Telia telecom company has an identity solution that provides UMA support.