On Fri, May 9, 2008 at 12:48 AM, Niels Reedijk <niels.reedijk@xxxxxxxxx> wrote: > Hi gang, > > I've been happily working on our centralized account implementation. > It is not yet working, but I am happy to report that some of the major > design decisions have been made (by me). I want to share those with > you. > > 1. Account.haiku-os.org <http://account.haiku-os.org/> is modeled on the > Google account service. So > to say, it is aware of the services (as opposed to OpenID, which just > authenticates everything under the sun). This restricts access to the > authentication procedures for services that are known to the server. > > 2. The account service is centralized. This means that all > authentication is done within the realm of the account service. Client > websites will not gather usernames and passwords themselves, but > rather redirect login requests to the account.haiku-os.org service. I > have designed an encrypted protocol for that. This is opposed to > having the accounts registered and maintained centrally, and then push > the accounts to the individual databases of the client services > (various reasons, ask me if you are interested). It is also different > from the client services asking for the password and then > authenticating the users against the central service themselves (by > transferring the account details over the internet). > > 3. As such, both Drupal and Trac need a customized plugin to > communicate with our centralized server. For Trac, this isn't going to > be a major issue, Drupal I don't know yet, but I think it should be > doable, based on the fact that Drupal already has 'custom' > authentication plugins (ldap and openid). > > Anyway, I will write up a more detailed document when I have the time, > but for now I choose to spend my time on implementing the thing. I am > currently implementing the service in Ruby on Rails, because it allows > me to do some rapid application development. As soon as something is > somewhat working, I will share the source, but for now I will still be > fleshing out the internal details. > > I hope I can show you more next week. > > Niels > ----------------------------------------------------------------------- > haiku-web@xxxxxxxxxxxxx - Haiku Web & Developer Support Discussion List > > Does that means we will have kind of a webservice to login a member here and there, using his Haiku Account information ?