Opened 19 years ago
Closed 14 years ago
#173 closed task (fixed)
Integrate login-related plugins
Reported by: | Noah Kantrowitz | Owned by: | Steffen Hoffmann |
---|---|---|---|
Priority: | normal | Component: | AccountManagerPlugin |
Severity: | normal | Keywords: | code integration |
Cc: | John Hampton, Brad Anderson, Noah Kantrowitz, Gunnar Wagenknecht, Mikhail Gusarov, Ryan J Ollos | Trac Release: | 0.8 |
Description
We clearly have too many implementations of alternate login mechanisms:
- AccountManagerPlugin
- AuthFormPlugin
- DbAuthPlugin
Given that Matt has made an extension point for this kind of thing, I propose that we merge both AuthForm and DbAuth into AccountManager.
Attachments (0)
Change History (15)
comment:1 Changed 19 years ago by
comment:2 Changed 19 years ago by
Yeah, I was going to bring that up when I saw DbAuthPlugin mentioned on the mailing list. Patches are welcome. The HTTP authentication used by AuthFormPlugin should be possible for validating users, though it won't be possible to implement the methods for listing/editing users.
comment:3 Changed 19 years ago by
I don't think AuthFormPlugin needs to be integrated with Db/AccountManager. The idea behind it is that you can use any kind of HTTP authentication method to use with it, and doesn't need to be managed by Trac. You could use any Apache module to auth off of Kerberos or LDAP or MySQL or whatever (or write some CGI to write your own). You could have a Trac module to manage accounts in a database and use that for HTTP auth with AuthForm, but they are still definitely separate things.
comment:4 Changed 19 years ago by
Status: | new → assigned |
---|
adeason@…: the point is that the AccountManagerPlugin also supports form-based authentication, so it's kind of redundant. As I said, the HTTP authentication could be added to AccountManager, so it's not necessary to keep it as a separate plugin.
comment:5 Changed 19 years ago by
Cc: | Gunnar Wagenknecht added |
---|---|
Trac Release: | → 0.8 |
comment:6 Changed 18 years ago by
(In [1534]) * add an HttpAuthStore
to support logins by checking the password against
HTTP authentication for a URL (re #173)
- update the modules to check whether the current password store supports writing passwords or deleting accounts
comment:7 follow-up: 9 Changed 18 years ago by
OpenidPlugin is another authentication plugin which can be integrated.
comment:8 Changed 18 years ago by
Cc: | Mikhail Gusarov added |
---|
comment:9 Changed 18 years ago by
Replying to Mikhail Gusarov <dottedmag@dottedmag.net>:
OpenidPlugin is another authentication plugin which can be integrated.
Openid is pretty cool and I'm considering using it for one of my sites, but I don't think the OpenidPlugin will benefit from being part of the AccountManagerPlugin. The OpenidPlugin doesn't fit into any of the interfaces provided by the AccountManagerPlugin since it's very different from the username/password backends supported by the AccountManager. I don't really see any place they overlap, so I think it's best if they remain separate.
comment:11 follow-up: 12 Changed 18 years ago by
Then OpenIdPlugin and AccountManager plugin will be incompatible forever. I think it's possible to refactor AccountManagerPlugin a bit to separate account from the credentials, and then associate account with multiple types of credentials (password, SSL cert, OpenId identity etc).
comment:12 follow-up: 14 Changed 18 years ago by
Replying to Mikhail Gusarov <dottedmag@dottedmag.net>:
I think it's possible to refactor AccountManagerPlugin a bit to separate account from the credentials, and then associate account with multiple types of credentials (password, SSL cert, OpenId identity etc).
That's beyond the scope of this ticket. This ticket is just meant to address the overlap between the several plugins that all implemented basically the same username/password style login forms. If you have some needs for integrating the Openid and AccountManager plugins please open a new ticket for that.
comment:13 Changed 14 years ago by
Cc: | John Hampton Ryan J Ollos added |
---|---|
Keywords: | code integration added |
Owner: | changed from Matt Good to John Hampton |
Status: | assigned → new |
I there still something to be done? Given the low interest within the past 4(!) years this is somewhat hard to believe.
comment:14 Changed 14 years ago by
Owner: | changed from John Hampton to Steffen Hoffmann |
---|
Replying to mgood:
Replying to Mikhail Gusarov <dottedmag@dottedmag.net>:
I think it's possible to refactor AccountManagerPlugin a bit to separate account from the credentials, and then associate account with multiple types of credentials (password, SSL cert, OpenId identity etc).
That's beyond the scope of this ticket. This ticket is just meant to address the overlap between the several plugins that all implemented basically the same username/password style login forms. If you have some needs for integrating the !Openid and AccountManager plugins please open a new ticket for that.
Right, I'll follow that approach. The initial request has been fulfilled, since the other plugins in question are currently depreciated in favor of AccountManagerPlugin.
comment:15 Changed 14 years ago by
Resolution: | → fixed |
---|---|
Status: | new → closed |
#1061 might have been open as this new ticket. I've taken care to mention this ticket there. Nothing more to be done here, as far as I can see.
Whoops, didn't see this ticket before I added #174, #175, #176. I'm all for the merge.