circulartriangle.openid

by Matthew Wilkes last modified Feb 16, 2011 02:03 AM

Allows Plone sites to provide OpenID authentication services to 3rd parties on behalf of its members.

Project Description

Current Status

For the love of god, do NOT use this on production. Don't put it anywhere near your live server.   This is not yet at alpha stage, this is an experimental preview that I do not expect to be used by anyone other than myself and those interested in how we handle OpenID in the future.

 

Overview

Allow a Plone site to act as an OpenID provider.  If this is installed on a Plone site called http://www.example.com that has a user Alice she can log onto (almost) any OpenID site by first logging into example.com and then providing the OpenID http://www.example.com/author/alice

 

Planned Features

  • Allow users to log in when using the OpenID, don't require pre-login
  • Assign a permission to allow users to authenticate against this site instead of allowing all members
  • Allow Once/Allow Forever/Deny options
  • A user-chosen watermark/stamp to provide more trust
  • Provide an adapter based way of assigning URIs to members, probably shipping with example.com/author/xxx and xxx.example.com included

 

Known bugs

This code does not yet have any automatic tests.  It's very much an experiment.  As we all know, untested code is broken code.  See multiple dire warnings below.

That said:

  • This doesn't work with logging into other Plone sites
  • This doesn't prompt for login if __ac cookie isn't found
  • This doesn't do any sanity checking on variables it gets from the URL

 

Requirements

Requires a modified main_template that includes:

      <link rel="openid.server" tal:attributes="href string:${portal_url}/@@oidauth" />

in the <head> element.  When PLIP #213 is merged in Plone 3.1 this will go in the viewlet.




Disclaimer

If you were silly enough not to have listened to the above, don't blame me.

Current Release

No stable release available yet.

If you are interested in getting the source code of this project, you can get it from the Code repository .

All Releases

Version Released Description Compatibility Status

Comments (0)