design of login system - request for comments :)
Evgeny
here's a possibility: a django application separate from the forum,
with the following requirements:
* accepts federated logins (openid of multiple kinds, oauth, facebook,
live, twitter)
* allows password login (one per account)
* extendable to accept external password verification (where third
party programmer is responsible for the implementation)
* support account recovery by email
* serve as single signon system for multiple sites hosted at same
toplevel domain (e.g. a.site.com b.site.com ) where those are not all
necessarily Django sites (they may be php or asp based or anything
else)
* allow to "attach" itself to multiple pre-existing sites with
independent user account systems and later take over the
responsibility for the simultaneous login to those sites
* allow multiple login methods per user account
* user may be logged in through multiple methods at the same time
* user may be logged in via email recovery alone (even if no login
methods are registered yet for the account)
* restrict one account per email address
* allow admin configuration through the web (setup keys, enable/
disable specific methods etc.)
* handle avatar and serve it to the "client" applications.
* login application may work under own urls or may be injectable into
other applications
maybe I missed something...
please comment. thanks.
Evgeny
I've seen the files you've checked in. They are actually not used by
the code,
because they are part of the new auth system built by Hernani and I've
reverted to the old one.
So those files will eventually go, but thanks and it's not a big deal.
For example views/auth.py are not reachable from urls.py
I've reverted to old login system b/c I want to build a separate login
app.
I will have time for that starting beginning of May.
Actually I seriously need it for my own website where login system
confuses the hell out of people.
My site includes PHP-based mediawiki and I want that to be taken care
of the new login system as well.
Cheers!
Evgeny.