Hack Week: Persona openid for Build Service

Build Service needs an openid.

Imagine following case: upstream needs an environment to reproduce build failure/ test failure, the best option would be osc co prj/pkg; osc build; osc chroot. But that requires Novell account. Having openid here will lower down the barrier.

Webui now works with Persona. API uses Devise with ichain plugin.

TODO:
*Generate token from WebUI, so we can talk to API directly *Don't generate passwords for Persona logins *Try Coolo's patches

Join this project Leave this project

Looking for mad skills in:

obs openid

This project is part of:

Hack Week 10

Activity

almost 5 years ago: ancorgs disliked Persona openid for Build Service

almost 6 years ago: matejcik liked Persona openid for Build Service

almost 6 years ago: xnull joined Persona openid for Build Service

almost 6 years ago: k0da liked Persona openid for Build Service

almost 6 years ago: k0da started Persona openid for Build Service

Show History

Comments

almost 6 years ago by ancorgs | Reply

I would suggest to adapt OBS to use Devise [1], so you can use [2] for replacing current iChain (Novell account) login, [3] for implementing openid and A LOT of other authentication backends [4].

[1] https://github.com/plataformatec/devise/ [2] https://github.com/openSUSE/deviseichainauthenticatable [3] https://github.com/nbudin/deviseopenidauthenticatable [4] https://github.com/search?q=devise
almost 6 years ago by coolo | Reply

if your target is osc co; osc build for upstreams it would be much better to get rid of this strange limitation that you can only use the webui anonymously. Adrian is afraid that we will be overrun if we allow anonymous build, but seriously - you can do that now with an interconnect and there is no need to authentificate whatsoever.