FAS password on 3rd party pages?
Vít Ondruch
vondruch at redhat.com
Fri Apr 26 13:19:23 UTC 2013
Dne 25.4.2013 20:31, Kevin Fenzi napsal(a):
> On Thu, 25 Apr 2013 09:11:00 -0400
> seth vidal <skvidal at fedoraproject.org> wrote:
>
>> Well I think the idea is simple enough - if there is one, branded and
>> obvious login page - and that page is openid then we're not training
>> our users to type their passwords into random websites.
> Right. I think this is definitely where we are headed, but we aren't
> there yet. ;(
>
> So, yes, I think we need to add support to fedocal and blockerbugs for
> openid, but not sure it's a blocker for them moving to production now.
Neither I am. I can justify both cases ;)
However, I would say, Fedocal is new application, not widely used yet,
so why not to postpone the push to stable and do it "right" right from
beginning?
blockerbugs? I dunno. The improvement to proposing the blocking bugs is
well desired feature, but we are already past alpha and we survived
without it up until now ... And the loging in is new feature if I am not
mistaken, so why not do it better?
>
> Moving forward, we might consider making it a blocker
Yes
> , especially once
> we have other things moved over to openid already, but I don't want to
> change the goal posts for existing apps in the middle of the process.
I agree, it should not be retroactive.
Vít
More information about the infrastructure
mailing list