Page 1 of 1
A proposal for an authentication system
Posted: Sat Aug 08, 2009 12:19 pm
by fairsayan
I'm developing a new REST application: OpenREST. The first issue I manage is authentication: I'd like to integrate SSO and OpenID approaches. I wrote an article about that in
http://www.openrest.eu/docs/authenticat ... -login.php and I'd like some suggests about this topic.
Thnx,
Fair
Re: A proposal for an authentication system
Posted: Sat Aug 08, 2009 4:36 pm
by Christopher
I think you will get some good analysis and feedback in this forum, but not by putting up a poll and requiring people to link to your site, read and then download and study complex software. You need to walk through your design and ask the key questions you want answered.
Re: A proposal for an authentication system
Posted: Sat Aug 08, 2009 4:44 pm
by Eran
Did you hear of OAuth? frankly I didn't find anything differentiating about your proposal. OAuth has been maturing for a quite a while and in use in several high profile services (such as Twitter).
http://oauth.net/
Re: A proposal for an authentication system
Posted: Sun Aug 09, 2009 12:32 pm
by fairsayan
Hi Pytrin,
I heard about OAuth because is one of the protocol used by Google for authentication. I understood that OAuth and OpenID are two different approaches for the same aim. I'm going to integrate
http://openidenabled.com/ not
http://oauth.googlecode.com/svn/code/php/ that are two implementations for these two standards.
My aim is a little wider: to develop a component in which OpenID or OAuth (or authentication against LDAP server) can be plugins for a general authentication method.
Fair
Re: A proposal for an authentication system
Posted: Mon Aug 10, 2009 5:13 am
by fairsayan
but not by putting up a poll and requiring people to link to your site, read and then download and study complex software
I'm not requiring to download anything, just spending 2 minutes to read my article in which I describe my opinion: please, don't ask me to copy and paste on this forum what is already written in the page I linked.