i see. so probably what kind of single sign on that we will use. before we try to do it using the cookie and session.. do you have any idea what architecture that we will use and the instructions about passing of value using this kind of parameters.. thanks.
On Thu, Apr 3, 2014 at 4:14 PM, Simon Gaeremynck <gaeremyn...@gmail.com>wrote: > I suppose that technically, it's called Single Sign-On software (SSO) [1]. > > This is probably not going to do SSO much justice, but here is a brief > explanation: > There is one service (the "identity provider") that is responsible for > maintaining a user's identity (credentials + profile + ..) which is > maintained by the institution. > Whenever a third party service (such as OAE) wants to authenticate user, > they forward the user to the identity provider (IdP). > The user logs in with his credentials at the IdP and then gets forwarded > back to the OAE. > OAE and the IdP can talk to each other over some previously established > protocol to verify that authentication was successful and to get > more details about the user's profile. > This means the OAE doesn't need to store any passwords and can rely on the > IdP for authentication. > > A couple of potential SSO solutions are: > - Central Authentication Service (CAS) [2] > - Shibboleth [3] > - .. > > Hope that helps, > > Simon > > [1] http://en.wikipedia.org/wiki/Single_sign-on > [2] http://www.jasig.org/cas > [3] http://shibboleth.net/ > > > On 3 Apr 2014, at 09:05, Michael Anthony Balmes <souskemic...@gmail.com> > wrote: > > ah i see sir. so can you be more specific on the part of of central > authentication service such as CAS or shibboleth? i am not totally > familiarize with these two. > > > On Thu, Apr 3, 2014 at 4:01 PM, Simon Gaeremynck <gaeremyn...@gmail.com>wrote: > >> Hi Michael, >> >> That functionality hasn't been implemented yet. We've out-scoped this >> feature >> as most institutions would let users authenticate through a central >> authentication >> service such as CAS or Shibboleth. >> >> Regards, >> >> Simon >> >> On 3 Apr 2014, at 07:16, Michael Anthony Balmes <souskemic...@gmail.com> >> wrote: >> >> > Hi Guys, >> > I just want to ask regarding password recovery.. what if a certain >> user forgot his password is there any way to retrieve it? thanks in advance. >> > _______________________________________________ >> > oae-dev mailing list >> > oae-dev@collab.sakaiproject.org >> > http://collab.sakaiproject.org/mailman/listinfo/oae-dev >> >> > > > -- > Michael Anthony S. Balmes > Software Engineer > Jupiter Innovations Pte. Ltd > > > -- Michael Anthony S. Balmes Software Engineer Jupiter Innovations Pte. Ltd
_______________________________________________ oae-dev mailing list oae-dev@collab.sakaiproject.org http://collab.sakaiproject.org/mailman/listinfo/oae-dev
