So, I spent tonight and got the OpenID server up, running, and working,
so far as I can tell.
I've also got it styled like the OSGeo homepage.
http://geodata.telascience.org/openid/
When you login there, you're offered information on how to login with
your OpenID: Just use, for example,
http://geodata.telascience.org/openid/?user=crschmidt at
http://spatialreference.org/openid/ .
The only thing that this doesn't implement, afaik, is the redirection
from openid/crschmidt to openid?user=crschmidt, but I figured that was
possible to do after we got it set up on the live server more easily
anyway.
Comments, suggestions, and migration paths to forward with getting this
deployed welcome. Note that if we decide to do so, I could even deploy
it on the geodata blade, though I would need to be sure that I was aware
of any possible issues that might entail.
Regards,
--
Christopher Schmidt
MetaCarta
Good job, Chris
I've just tested it and worked fine.
If help is needed for the look and feel, I'll be available.
I guess, once in production, the OpenId page should better stay only on a SSL connection; so no passwords will ever move on plain text.
ciao
Lorenzo
Christopher Schmidt wrote:
So, I spent tonight and got the OpenID server up, running, and working,
so far as I can tell.
I've also got it styled like the OSGeo homepage.
http://geodata.telascience.org/openid/
When you login there, you're offered information on how to login with
your OpenID: Just use, for example,
http://geodata.telascience.org/openid/?user=crschmidt at
http://spatialreference.org/openid/ .
The only thing that this doesn't implement, afaik, is the redirection
from openid/crschmidt to openid?user=crschmidt, but I figured that was
possible to do after we got it set up on the live server more easily
anyway.
Comments, suggestions, and migration paths to forward with getting this
deployed welcome. Note that if we decide to do so, I could even deploy
it on the geodata blade, though I would need to be sure that I was aware
of any possible issues that might entail.
Regards,
Christopher Schmidt wrote:
Comments, suggestions, and migration paths to forward with getting this
deployed welcome. Note that if we decide to do so, I could even deploy
it on the geodata blade, though I would need to be sure that I was aware
of any possible issues that might entail.
Chris,
I'm fine with leaving this on geodata.telascience.org if it is working well
there. I think Howard or I can setup openid.osgeo.org to point there.
I would like to encourage you to setup a wiki page in the osgeo wiki, linked
off the SAC page (or perhaps the SAC LDAP page assuming there is such a thing)
that describes the service, and how it is setup. I'd also like to see a
tar file of the majority of the software configuration living somewhere
other than the geodata machine so we can set things up again fairly quickly
should that machine suffer a serious meltdown.
Once the openid.osgeo.org link is setup, I'd like to add a brief mention of
this openid service at http://www.osgeo.org/osgeo_userid.
Best regards,
--
---------------------------------------+--------------------------------------
I set the clouds in motion - turn up | Frank Warmerdam, warmerdam@pobox.com
light and sound - activate the windows | http://pobox.com/~warmerdam
and watch the world go round - Rush | President OSGeo, http://osgeo.org
Frank,
I don't think that the wildcard SSL cert is set up on geodata? I think
that this would be a requirement if it is going to be hosted there.
Initially geodata may make sense, but I wonder if the availability of an
authentication system would warrant having it on the main servers. The
only problem then would be administering it, with the limited logins
allowed there.
Jason
-----Original Message-----
From: Frank Warmerdam
Subject: Re: [SAC] Dev OpenID Server up and running
I'm fine with leaving this on geodata.telascience.org if it is working
well there. I think Howard or I can setup openid.osgeo.org to point
there.
On Tue, Jul 31, 2007 at 08:33:18AM -0700, Jason Birch wrote:
Frank,
I don't think that the wildcard SSL cert is set up on geodata? I think
that this would be a requirement if it is going to be hosted there.
Note that no/few other OSGeo login services use SSL -- trac, the main
homepage, etc.
Regards,
--
Christopher Schmidt
MetaCarta