Talk:Develop/Single sign on

From OpenStreetMap Wiki
Jump to navigation Jump to search
  • Unification of service credentials could be an intermediate step on the way to single sign on. But at the end a user should only need to supply his credentials once. So he will be logged in to the wiki and the slippy map with one authentication step f.e. -- Mardocz 13:39, 01 Nov 2007 (CET)
  • Single point of registration and synchronize credentials to all OpenStreetMap Services to unify login credentials and don't force the user to sign up multiple times Mardocz 13:47, 01 Nov 2007 (CET)
  • Can the the OSM API authentication request be done over a SSL encrypted connection? Then basic authentication will be no problem. Mardocz 16:16, 01 Nov 2007 (CET)
  • The forum is not quite single sign-on. I usually log into via GitHub, but when I go to I have to enter a username and password. The forum would ideally add support OAuth2 or SAML to enable true single sign-on. Chaz6 (talk) 13:52, 14 July 2019 (UTC)

I think OpenID is the way to go

I think that OpenID is the way to go. It's because it can be "plugged into" (works with) the wiki, trac and the forum. No development is needed. I am not sure about the ruby development though. I think OpenID is exactly meant for use-cases like this. Kerberos is oversized for this use-case. It's for high security applications imo. --PMay 13:25, 20 June 2008 (UTC)

What about a Radius Server?

OpenID is something entirely different

Read up on OpenID. This is not what you (we) want. We do not need a framework where different identity providers communicate among each other, and the last thing we want is some external identity provider people have to register with. OpenID is three times more complex than what we want, and requires applications using it to do more than needed. The only thing we want is a shared authentication scheme where an application can redirect the user to OSM and gets back his or her OSM account id. There are other schemes more suitable than OpenID, and this has been discussed on the dev list a number of times. I suggest to check with the developers there before delving too deep in OpenID which IMHO is very unlikely to be the technology of choice for OSM. --Frederik Ramm 03:19, 27 November 2008 (UTC)