7:07 a.m.
Hi ipsilon@,
I was wondering something about Ipsilon... I know Ipsilon can be an
identity provider for users in an IdM/LDAP on a number of federation
protocols including Persona.
Can Ipsilon be used by a Service Provider to authenticate *external*
users via Persona, OpenID, etc? The advantage of this would be that
all of the authentication logic for the various protocols resides in
one place (Ipsilon) and multiple SPs can use Ipsilon.
I had a quick look at the code and saw the Persona IdP logic, but
nothing related to verifying Peronsa/BrowserID backed assertions.
But perhaps I overlooked something and Persona already does this.
Cheers,
Fraser
7:12 a.m.
On Wed, Feb 11, 2015 at 02:07:55PM +0100, Fraser Tweedale wrote:
Hi ipsilon@,
I was wondering something about Ipsilon... I know Ipsilon can be an
identity provider for users in an IdM/LDAP on a number of federation
protocols including Persona.
Can Ipsilon be used by a Service Provider to authenticate *external*
users via Persona, OpenID, etc? The advantage of this would be that
all of the authentication logic for the various protocols resides in
one place (Ipsilon) and multiple SPs can use Ipsilon.
I had a quick look at the code and saw the Persona IdP logic, but
nothing related to verifying Peronsa/BrowserID backed assertions.
But perhaps I overlooked something and Persona already does this.
^^^^^^^ Ipsilon, rather.
Cheers,
Fraser
_______________________________________________
ipsilon mailing list
ipsilon(a)lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo/ipsilon
10:05 a.m.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Hi Fraser,
On Wed, Feb 11, 2015 at 02:12:31PM +0100, Fraser Tweedale wrote:
On Wed, Feb 11, 2015 at 02:07:55PM +0100, Fraser Tweedale wrote:
...
>
> Can Ipsilon be used by a Service Provider to authenticate *external*
> users via Persona, OpenID, etc? The advantage of this would be that
> all of the authentication logic for the various protocols resides in
> one place (Ipsilon) and multiple SPs can use Ipsilon.
Ipsilon does not do this yet, but I am currently working on adding an OpenID
login module, and if you want to, I can also add a Persona login module.
Could you file a ticket at https://fedorahosted.org/ipsilon/?
...
> Cheers,
> Fraser
- --
With kind regards,
Patrick Uiterwijk
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=DNLH
-----END PGP SIGNATURE-----
11:34 a.m.
On Wed, Feb 11, 2015 at 05:05:48PM +0100, Patrick Uiterwijk wrote:
Hi Fraser,
On Wed, Feb 11, 2015 at 02:12:31PM +0100, Fraser Tweedale wrote:
> On Wed, Feb 11, 2015 at 02:07:55PM +0100, Fraser Tweedale wrote:
...
> >
> > Can Ipsilon be used by a Service Provider to authenticate *external*
> > users via Persona, OpenID, etc? The advantage of this would be that
> > all of the authentication logic for the various protocols resides in
> > one place (Ipsilon) and multiple SPs can use Ipsilon.
Ipsilon does not do this yet, but I am currently working on adding an OpenID
login module, and if you want to, I can also add a Persona login module.
Could you file a ticket at https://fedorahosted.org/ipsilon/?
OK, I will file the ticket. Cheers!
...
> > Cheers,
> > Fraser
--
With kind regards,
Patrick Uiterwijk
_______________________________________________
ipsilon mailing list
ipsilon(a)lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo/ipsilon
3423
days inactive
3423
days old
ipsilon@lists.fedorahosted.org
3 comments
2 participants
participants (2)
-
Fraser Tweedale -
Patrick Uiterwijk