Thank you for your answer.
I tried to follow this tutorial (I dont know why I didnt find it
before... :s ).
However, I have a question left.
I decided to let the user choose his domain by clicking on his domain
link.
I deleted the "login required" in app.yaml and modified my main.py
such as...
My python looks like :
-------------------------------------------
#
#code
#
providers = {
'prov 1' : 'google.com/a/domain.com',
'prov 2' : 'google.com/a/subdomain1.com',
'prov 3' : 'google.com/a/subdomain2.com'
# add more here
}
#
#code
#
else:
self.response.out.write('Hello world! Sign in at: ')
for name, uri in providers.items():
self.response.out.write('[<a href="%s">%s</a>]' %
(users.create_login_url(federated_identity=uri), name))
#
#code
#
-------------------------------------------
However links are not redirecting user...
I guess it should work, if you do this yourelf, that each Google Apps
domain should be used as a direct provider federated entities ?
What should I do to have Google Apps domains login page after clicking
on a link (and get redirection to my app after authentication against
Google, of course) ?
I guess I dont have the right link/approach because, with myopenid.com
it's working (redirecting).
thx in advance
Antoine
On Jan 31, 1:34 pm, Robert Kluin <[email protected]> wrote:
> HeyAntoine,
> Use OpenID / Federated login. You can provide users with a list of
> subdomains, or check them against that. I usually either give users
> the option to enter their domain or email address (from which I can
> deduce the domain), then redirect them to the proper page. It is
> pretty straight forward to do.
>
> I think Wesley's article on federated login provides all the basics.
> http://code.google.com/appengine/articles/openid.html
>
> Robert
>
>
>
>
>
>
>
> On Sun, Jan 29, 2012 at 22:57,Antoine<[email protected]> wrote:
> > Hi everyone,
>
> > I am working on a simple application (actually a website) on Google
> > App Engine.
> > This application should be accessible only for a selected Google Apps
> > domains list.
>
> > These domains are corporate Google Apps subdomains. One Google Apps
> > account domain handle several subdomains, one for each business unit.
>
> > I would like to restrict my apps to those domain.
>
> > However, there is only 3 ways to secure my app (Application Settings /
> > Authentication Options in Google App Engine Console) :
> > - Google Accounts API
> > - Google App Domain
> > - Open ID (Federated Login)
>
> > For the first one, it can work, however, as we are using Federation
> > Login for all Google Apps domains, we dont want the user to login
> > twice : one on the Google Account Sign-in webpage which is displayed
> > automatically when we choose Google Accounts, and then on the
> > federation page.
> > Because with this Google App Engine authentication, the user is first
> > redirected to :http://accounts.google.com
> > then enter its credentials Google Apps, then Google tell him that
> > federation is working for this domain so he just need to Click to be
> > redirected.
> > This is not user friendly.
>
> > Second one, works only with one Google App Primary domain. Subdomain
> > doesnt work with this feature...
>
> > Maybe third one, Open ID/ Federated login, can work, but how ?
>
> > Thx
> >Antoine
>
> > --
> > You received this message because you are subscribed to the Google Groups
> > "Google App Engine" group.
> > To post to this group, send email to [email protected].
> > To unsubscribe from this group, send email to
> > [email protected].
> > For more options, visit this group
> > athttp://groups.google.com/group/google-appengine?hl=en.
--
You received this message because you are subscribed to the Google Groups
"Google App Engine" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/google-appengine?hl=en.
