[Chicago] Integrated wiki + forums
Massimo Di Pierro
mdipierro at cs.depaul.edu
Fri Oct 17 00:02:28 CEST 2008
I agree,
CAS comes with its own provider/consumer but I also run a provider
here (https://mdp.cti.depaul.edu/cas) so that users can connect to
that and do not have to set it up. Still a lot of people find it
unnecessary complex for most apps. So I got rid of it in T2
http://mdp.cti.depaul.edu/examples/static/t2.pdf
http://mdp.cti.depaul.edu/examples/static/web2py.app.plugin_t2.tar
I see a lot of potential overlap between what you are doing and T2.
Perhaps you want to join forces?
Massimo
On Oct 16, 2008, at 4:57 PM, Chris McAvoy wrote:
> Ian Bicking just stole my heart: http://blog.ianbicking.org/2008/10/06/the-philosophy-of-deliverance/
>
> I love that guy.
>
> On Thu, Oct 16, 2008 at 4:54 PM, Chris McAvoy
> <chris.mcavoy at gmail.com> wrote:
> Authentication...gah
>
> On Thu, Oct 16, 2008 at 4:32 PM, Ian Bicking <ianb at colorstudy.com>
> wrote:
>
> We do that on openplans.org -- the blogs are WordPress, the wiki is
> a modified Plone (as well as the mailing list), and then we have
> some other smaller pieces. We implement common auth by having Plone
> drive the authentication, and then sync up its user db with
> WordPress, and some WordPress code to read Plone's auth cookie.
>
> ClueMapper is using Deliverance to tie together a couple other
> pieces (Trac, a paste-bin, and a time tracker): http://projects.serverzen.com/pm/p/cluemapper
>
> IBM has a social network product that we're using internally at PSC
> called Connections. It's not too shabby, but it seems like
> something that could just as well be a loose conflagration of best
> of breed tools. The missing piece, imho, is that single sign on
> authentication / authorization service.
>
> A few months ago, I spend a great deal of time setting up CAS (http://www.ja-sig.org/products/cas/
> ) and getting it to run with Django. Massimo has done the same with
> KPAX.
>
> CAS has a really simple API, and does a good job of allowing you to
> choose from a variety of auth backends (ldap, database...other
> stuff), it then passes credentials back to the applications through
> a token...it's up to the apps to handle authorization bits. It's a
> nice scheme. HOWEVER, CAS is a total pain to set up. At least, it
> was for me, as its a JEE app.
>
> I know that there's some sorts of movement towards distributed auth
> schemes, but none of them seem to tackle single sign on for internal
> apps. It's a space that's sort of been abandoned by Python folks.
>
> It's really yet another case of the Java enterprise guys handing us
> our asses by providing a few tools that end up making a ton of sense.
>
> Anywho, I started drafting the above as a blog post last week...kind
> of funny timing.
>
> Chris
>
>
> <ATT00001.txt>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/chicago/attachments/20081016/0b08cb8e/attachment-0001.htm>
More information about the Chicago
mailing list