Deprecating PyPI as an OpenID Provider
Just a heads up,
I do not intend to implement the “Use PyPI as an OpenID Provider” functionality in Warehouse. Looking at the actual usage of this, it appears that very few people have ever taken advantage of it (a total of 201 (user, site) combinations in the database of what people have set to “Allow Always”) and I don’t believe it’s worth continuing. Longer term, Python should get a centralized Sign on across all it’s web properties, which could re-implement this feature for folks who want it.
If you’re using this for anything, I recommend migrating off of it onto something else.
Warehouse Issue: https://github.com/pypa/warehouse/issues/60
— Donald Stufft
On Tue, Jun 7, 2016 at 2:59 PM, Donald Stufft donald@stufft.io wrote:
Longer term, Python should get a centralized Sign on across all it’s web properties, which could re-implement this feature for folks who want it.
I agree. This is should be a goal for the PSF. This would help with elections and a number of other things as well. I think there are a few solutions like FreeIPA if anyone on this list is interested in looking into helping the PSF implement this.
Cheers, Ian
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 06/07/2016 04:24 PM, Ian Cordasco wrote:
On Tue, Jun 7, 2016 at 2:59 PM, Donald Stufft donald@stufft.io wrote:
Longer term, Python should get a centralized Sign on across all it’s web properties, which could re-implement this feature for folks who want it.
I agree. This is should be a goal for the PSF. This would help with elections and a number of other things as well. I think there are a few solutions like FreeIPA if anyone on this list is interested in looking into helping the PSF implement this.
IIRC, Christian Heimes works on FreeIPA in his day job for RedHat.
Tres. - -- =================================================================== Tres Seaver +1 540-429-0999 tseaver@palladion.com Palladion Software "Excellence by Design" http://palladion.com
On 7 June 2016 at 13:33, Tres Seaver tseaver@palladion.com wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 06/07/2016 04:24 PM, Ian Cordasco wrote:
On Tue, Jun 7, 2016 at 2:59 PM, Donald Stufft donald@stufft.io wrote:
Longer term, Python should get a centralized Sign on across all it’s web properties, which could re-implement this feature for folks who want it.
I agree. This is should be a goal for the PSF. This would help with elections and a number of other things as well. I think there are a few solutions like FreeIPA if anyone on this list is interested in looking into helping the PSF implement this.
IIRC, Christian Heimes works on FreeIPA in his day job for RedHat.
He does, and improving the identity management situation is also on the PSF Infrastructure Manager's TODO list - even properly documenting all our identity silos and access management requirements will take a bit of work (as in addition to the community facing services, there are also PSF staff services and backend infrastructure to take into account).
Cheers, Nick.
participants (4)
-
Donald Stufft -
Ian Cordasco -
Nick Coghlan -
Tres Seaver