Menu
▾
▴
Re: [Bodington-developers] Bodington with SP and IdP - SSO and v2.6
|
From: Alistair Y. <ali...@sm...> - 2005-06-15 18:09:26
|
IdP/SP don't have anything at all to do with bod passwords. If you're using a bod authenticator that authenticates outwith bodington then you'l= l have the problem of changing passwords. Whether it's ldap/webauth/windows= . To sort it, somehow tie the authenticator to the change password functionality, i.e. ldap would disable it entirely. Even if you login with a windows username/password (though I don't think you can - bod can't authenticate to windows) you still can't change that password in bod. If bod becomes part of a larger SSO solution, such as ldap or webauth the= n it's password changing functionality should be disabled. Now we're on the subject I think it's time bod stopped storing passwords in plain text. Alistair --=20 Alistair Young Senior Software Engineer UHI@Sabhal M=F2r Ostaig Isle of Skye Scotland > Alistair Young wrote: >>> But with shibb >> >> Let's forget shibb exsts for the moment. The IdP is a hoax! it has >> nothing to do with bodington! If you have a standard bodington, with = a >> standard authenticator then you can change your password in bodington >> no matter what Guanxi does with your attributes - Guanxi doesn't >> authenticate you - bodington does. >> >> You only need to worry about the "change password" functionality if >> you're not using the standard bodington authenticator, i.e. you're >> using the ldap or webauth one. You can do this without every having >> heard of shibb. >> >> IdP/SSO have nothing to do with bodington authentication! > > I think the problem is because some people are talking about Bodington > being an SP and some people are talking about Bodington being an IdP. > > IdP doesn't need anything to do with changing password. > SP does need to know about password changing. > > -- > +--Matthew Buckett-----------------------------------------+ > | VLE Developer, Learning Technologies Group | > | Tel: +44 (0) 1865 283660 http://www.oucs.ox.ac.uk/ | > +------------Computing Services, University of Oxford------+ > > > ------------------------------------------------------- > SF.Net email is sponsored by: Discover Easy Linux Migration Strategies > from IBM. Find simple to follow Roadmaps, straightforward articles, > informative Webcasts and more! Get everything you need to get up to > speed, fast. http://ads.osdn.com/?ad_id=3D7477&alloc_id=3D16492&op=3Dcl= ick > _______________________________________________ > Bodington-developers mailing list > Bod...@li... > https://lists.sourceforge.net/lists/listinfo/bodington-developers > |
