Deprecating PyPI as an OpenID Provider
Just a heads up, I do not intend to implement the “Use PyPI as an OpenID Provider” functionality in Warehouse. Looking at the actual usage of this, it appears that very few people have ever taken advantage of it (a total of 201 (user, site) combinations in the database of what people have set to “Allow Always”) and I don’t believe it’s worth continuing. Longer term, Python should get a centralized Sign on across all it’s web properties, which could re-implement this feature for folks who want it. If you’re using this for anything, I recommend migrating off of it onto something else. Warehouse Issue: https://github.com/pypa/warehouse/issues/60 — Donald Stufft
On Tue, Jun 7, 2016 at 2:59 PM, Donald Stufft <donald@stufft.io> wrote:
Longer term, Python should get a centralized Sign on across all it’s web properties, which could re-implement this feature for folks who want it.
I agree. This is should be a goal for the PSF. This would help with elections and a number of other things as well. I think there are a few solutions like FreeIPA if anyone on this list is interested in looking into helping the PSF implement this. Cheers, Ian
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/07/2016 04:24 PM, Ian Cordasco wrote:
On Tue, Jun 7, 2016 at 2:59 PM, Donald Stufft <donald@stufft.io> wrote:
Longer term, Python should get a centralized Sign on across all it’s web properties, which could re-implement this feature for folks who want it.
I agree. This is should be a goal for the PSF. This would help with elections and a number of other things as well. I think there are a few solutions like FreeIPA if anyone on this list is interested in looking into helping the PSF implement this.
IIRC, Christian Heimes works on FreeIPA in his day job for RedHat. Tres. - -- =================================================================== Tres Seaver +1 540-429-0999 tseaver@palladion.com Palladion Software "Excellence by Design" http://palladion.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBAgAGBQJXVy+lAAoJEPKpaDSJE9HYIBcQAImzTHtAzENNR//GswKjxrCT zYxSQzdsQtBjpWOB279roeHfpZRSf6xhy9HjUhOWGIQ+nDgEcIgDUIU1BIg2ZPgJ zQcMcjV0wiOAeyeVdgRtKXw3o4UW4XijuS43C29s+rxHvGPLPziQGQLWk7SZdzjf YAi12Us96rj2m0uuXjpOPVZjrztI0ABdcA2yRJuDYiMtVONH/4TP86n6NHnUznO1 RCoPsfLTn7BbU1hMDOdrGKOED4QYNskiDAiB5qtL/uB8zDgKRLlIhxTHq9/d2T7D 0836zTvNwoo/TwBwfUFn1Op8CXydls7yGfpRq43NNqgBNwhWxzImpfVTxB+D8MHm NCd4tPvgSJdyov2loYqToCytH3d+ueKdL77PG9ag7GCuOcrTggbBLhG5aaNknOSo LN/yZgF+geuGp81WlHNwl3duo0JgapX/ilQg96IZSy19DzZa4/mihJu1SurGB53u Jj7bpz10wCBMK5NJqzFYJ/gcAEqPQ7E6jzFQps65Eqs3HQTb33xOryptpmc7kZSR fT/NJG+0ctwjdAbr7pZX0Jyg8G2hWEOsi+pfY/22Ejs4gxmNnMWqqVcLzBm7glB2 sDc4sm573WtDRM6+dkCyyjKZMYwvWSbsIlWiIo27pdHXOTx4fGKxiJgqt4cD1IhC DN02co6A9A+t5Meory24 =fMAO -----END PGP SIGNATURE-----
On 7 June 2016 at 13:33, Tres Seaver <tseaver@palladion.com> wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 06/07/2016 04:24 PM, Ian Cordasco wrote:
On Tue, Jun 7, 2016 at 2:59 PM, Donald Stufft <donald@stufft.io> wrote:
Longer term, Python should get a centralized Sign on across all it’s web properties, which could re-implement this feature for folks who want it.
I agree. This is should be a goal for the PSF. This would help with elections and a number of other things as well. I think there are a few solutions like FreeIPA if anyone on this list is interested in looking into helping the PSF implement this.
IIRC, Christian Heimes works on FreeIPA in his day job for RedHat.
He does, and improving the identity management situation is also on the PSF Infrastructure Manager's TODO list - even properly documenting all our identity silos and access management requirements will take a bit of work (as in addition to the community facing services, there are also PSF staff services and backend infrastructure to take into account). Cheers, Nick. -- Nick Coghlan | ncoghlan@gmail.com | Brisbane, Australia
participants (4)
-
Donald Stufft -
Ian Cordasco -
Nick Coghlan -
Tres Seaver