[xwiki-devs] [gsoc] Re: Single Sign-On project
Markus Lanthaler
mark_lanthaler at gmx.net
Tue Jul 1 23:36:12 CEST 2008
>> Just to be sure: Does that means that it is OK to start with OpenID
>> integration using OpenID4Java? Or do you prefer Netmesh? As far as I know
>> OpenID4Java is kind of the standard library used. On the other side
>> Netmesh
>> supports also LID (a similar protocol to OpenID created by Netmesh).
>
> In the context of the GSOC, I think you should run with OpenID4Java.
> But I'm not an expert of SSO/OpenId so it would be great to have
> others comments on that, especially Sergiu.
Seems to be OK.. at least there are no complaints :-)
I updated my page (http://dev.xwiki.org/xwiki/bin/view/Design/SingleSignOn)
and inserted mockups for the UI and for the architecture I'll use. There are
still some open questions. I don't know what makes more sense.. Should we
discuss them here or as comments on that page?
-------%<--------------------------------------------------
Open Questions
* Is the design of the new login/registration screen OK?
* Should it be possible to associate more than one OpenID URL to a user
account?
* How should it be possible for a user to bind an OpenID URL to his already
existing account?
* How should the issued OpenID URLs look like?
http://www.xwiki.org/xwiki/bin/view/XWiki/UserName seems to be to long for
me. Something like http://www.xwiki.org/user/UserName would be much better
in my opinion. What do you think? Would that be possible with the existing
architecture?
* What about user recycling, i.e. if a user (Alice) deletes his account and
another one (Bob) creates an account with the same user name afterwards what
should happen? Bob would be able to log-in to all sites on which Alice used
her XWiki account. Yahoo for example solves this by appending a fragment
like #fk32j to each OpenID. So the OpenID URL
http://www.xwiki.org/user/UserName would become
http://www.xwiki.org/user/UserName#fragment
--------%<--------------------------------------------------
Should I elaborate something on that page? Is something missing?
Cheers,
Markus
More information about the devs
mailing list