OpenID

[aln_cms]

Hi,

I was browsing through the web looking for stuff to develop a site/module with and I came across OpenID.  Moreover, I came across : http://iwantmyopenid.org/.  In order to promote awareness, they are offering $5000 bounties to projects that implement it.  The requirements, http://iwantmyopenid.org/bounty are a little stiff I feel, but it is a solid idea.  I'm sure the 5k would help CMSMS along.

I thought it may be an idea to integrate this functionality into Front End Users, allowing for the choice of provider to be chosen by the administraor?


Alan

[Pierre M.]

Hello,

OpenID has been on the roadmap. Mostly post 2.0 now. But our dear benevolent dictator likes it. So I think it is still in the roadmap but not the top priority. But this bounty may change things, who knows ?

Pierre M.

[cyberman]

I'm sure the 5k would help CMSMS along.

Thanks for your note - have informed Ted about.

[badhoy]

OpenID support would be sweet.

[calguy1000]

OpenID support for the backend doesn't make much sense to me (or does it? somebody please explain why it could).

For the frontend it does.... but not the backend.

[Nullig]

It might be useful for someone who maintains a number of sites. I know I would love to have a "single sign-on" for all of the sites I manage.

Nullig

[badhoy]

I have to agree with Nullig.  It would be very useful to have an OpenID (my InfoCard) that allowed me to log directly into my many CMSMS sites.

This is where the FrontEndUsers module could break-down (or needs to be expanded?).  The user simply presents their OpenID and be added directly to a specified user access category.

[aln_cms]

I hadn't thought about it for the admin side, but like badhoy I have many CMSMS sites that I administer and try to maintain password lists for.  But your average end-user wouldn't have that many to adminster.  Could be a nice excuse to implement in the core, which satisifes the bounty requirement that it not be an add-on.

[Ted]

I had kind of been putting this off as a 2.0 feature because of the fact that front and back end logins are shared.  It would make a ton of sense then.

However, that bounty is pretty nice...  and we do meet the requirements.

If we could get it setup for the backend to meet the core requirement and then have a way to extend it to FEU, I'd be all for it.  My issue is that in my limited research, the availability of libraries in php is scarce.  Drupal ended up writing their own because of the lack of good code out there.  Do we have to do the same?

[badhoy]

Ted, would anything on these two sites work (I am not a coder)?
http://openidenabled.com/php-openid/
http://synapse.anywebcam.com/index.php/ ... libraries/

[Ted]

I added OpenId support to the backend login of 2.0 over the weekend.  We still haven't created a front-end login there yet, but it'll be easy enough to add in when we do.  I ended up rolling my own implemenation, as the basics of the spec are actually very simple.  Though, this is going to require a LOT of testing to make sure it works with all implementations...  though I've tested 3 and they're all good.

[badhoy]

That is great news.

I spent part of last week at the Digital Identity World conference and Orange (France Telecom) announced that they are now supporting OpenID for their customers.  That's about 11 million potential OpenID users.

[aln_cms]

yeah, that's great.  I have about 30 sites I manage and pwds are a pain in the a$$. thanks Ted.

[Pierre M.]

Thank you Ted.