I have proposed having a Credential class that you could wrapper the
factors for any kind of scheme. Then an Authenticator class would be
extended for each scheme to provide the second half of a
Credential/Authenticator pair for an Authentication Manager to run.
These would really just be adapters to provide a standard interface for
all Credentials/Authenticators for use by the Authentication Manager.
Markus Wolff wrote:
Gavin Vess schrieb:
Yes, work is actively underway, but we would like more people to join
the effort:
http://framework.zend.com/wiki/display/ZFDEV/Auth+Team
We are trying to make Zend_Authenticate flexible enough to support
many different authentication schemes.
One thing that many authenticatin classes lack, IMHO, is support for
single-signon authentication services, meaning methods where you don't
get the username and password directly, but receive an authentication
token from a trusted server where the user has previously logged in.
Examples go from NTLM support to newer web-based services such as
Google's SSO thing or most recently Yahoo's BBAuth.
ZF doesn't need to support that very early in the game, IMHO, but it
should be considered in the design phase for the new auth component,
so that these things can be easily added in the future.
CU
Markus
