https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=19886
--- Comment #4 from David Cook <[email protected]> --- (In reply to Jon Knight from comment #1) > Is this something that needs to be built into Koha, or is it better to make > use of existing third party systems such as PrivacyIDEA > (https://www.privacyidea.org/) that can be used in conjuction with normal > SSO mechanisms? For example we (Loughborough University) have tested > Yubikeys with PrivacyIDEA and simpleSAMLphp IdP and it works, and we already > know that Koha can use the SAML2.0 authentication assertions from the IdP > (as that's what we're doing in production with PTFS-E). PrivacyIDEA also > can also support Google Authentication as suggested in Bug 19887. I wonder about this as well. I'm fond of Keycloak for this purpose. It can use SAML or OpenID Connect. I have a local OpenID Connect client I wrote for Koha, and I've thought about using Keycloak in the test plan for when I finish the patches for Bugzilla... That said, adding support to Koha would make it easy for people to have more secure out of the box implementations without needing more third party software. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes. _______________________________________________ Koha-bugs mailing list [email protected] https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
