Re: [Zope3-Users] Remote authentication
Hi Hermann. Thanks for your reply. Haven't quite decided on this but I've got things to try that might be more efficient than xmlrpc. I'm likely to attempt an authentication server with web service style SSO at this point though OpenId is attractive. I don't know if anyone has made a plugin yet for z3 for OpenId but I might try this. I am not sure how OpenId handles different contexts for users at this point (for example being a user at a worksite, and then a public user) though but I will be experimenting with it regardless. Many thanks. Regards, David Hermann Himmelbauer wrote: Am Donnerstag, 10. Mai 2007 18:13 schrieb David Pratt: Hi. Has anyone got a bit of a blueprint for a remote authentication in zope 3. I wish to authenticate on a z3 site (site 1) using credentials stored on a different z3 site (site 2) over the Internet (otherwise would likely use LDAP). I do not want to maintain users on site 1. I only want users from a couple of groups on site 2 to be able to access site 1. I was thinking of using xmlrpc but will likely use a different transport with better security and encryption. To my mind, xmlrpc can also be transported via HTTPS. At a quick glance, I therefore cannot see any security issues. I'd rather think about performance problems. If HTTPS is no option, a VPN connection between the two servers would probably also be a secure solution. Regards, Hermann ___ Zope3-users mailing list Zope3-users@zope.org http://mail.zope.org/mailman/listinfo/zope3-users
Re: [Zope3-Users] Remote authentication
Am Donnerstag, 10. Mai 2007 18:13 schrieb David Pratt: > Hi. Has anyone got a bit of a blueprint for a remote authentication in > zope 3. I wish to authenticate on a z3 site (site 1) using credentials > stored on a different z3 site (site 2) over the Internet (otherwise > would likely use LDAP). I do not want to maintain users on site 1. I > only want users from a couple of groups on site 2 to be able to access > site 1. > > I was thinking of using xmlrpc but will likely use a different transport > with better security and encryption. To my mind, xmlrpc can also be transported via HTTPS. At a quick glance, I therefore cannot see any security issues. I'd rather think about performance problems. If HTTPS is no option, a VPN connection between the two servers would probably also be a secure solution. Regards, Hermann -- [EMAIL PROTECTED] GPG key ID: 299893C7 (on keyservers) FP: 0124 2584 8809 EF2A DBF9 4902 64B4 D16B 2998 93C7 ___ Zope3-users mailing list Zope3-users@zope.org http://mail.zope.org/mailman/listinfo/zope3-users
Re: [Zope3-Users] Remote authentication
Hi Bernd. Yes, this should give me something similar to examine. Many thanks. Regards David Bernd Dorn wrote: as a plugin example you may want to take a look at http://svn.zope.org/ldappas/ regards, bernd On 10.05.2007, at 18:13, David Pratt wrote: Hi. Has anyone got a bit of a blueprint for a remote authentication in zope 3. I wish to authenticate on a z3 site (site 1) using credentials stored on a different z3 site (site 2) over the Internet (otherwise would likely use LDAP). I do not want to maintain users on site 1. I only want users from a couple of groups on site 2 to be able to access site 1. I was thinking of using xmlrpc but will likely use a different transport with better security and encryption. Anyone doing anything similar at the moment that could share their experience. I am reading through the zope.app.authentication to refresh my memory on plugins in the meantime. Many thanks. Regards, David ___ Zope3-users mailing list Zope3-users@zope.org http://mail.zope.org/mailman/listinfo/zope3-users ___ Zope3-users mailing list Zope3-users@zope.org http://mail.zope.org/mailman/listinfo/zope3-users
Re: [Zope3-Users] Remote authentication
as a plugin example you may want to take a look at http:// svn.zope.org/ldappas/ regards, bernd On 10.05.2007, at 18:13, David Pratt wrote: Hi. Has anyone got a bit of a blueprint for a remote authentication in zope 3. I wish to authenticate on a z3 site (site 1) using credentials stored on a different z3 site (site 2) over the Internet (otherwise would likely use LDAP). I do not want to maintain users on site 1. I only want users from a couple of groups on site 2 to be able to access site 1. I was thinking of using xmlrpc but will likely use a different transport with better security and encryption. Anyone doing anything similar at the moment that could share their experience. I am reading through the zope.app.authentication to refresh my memory on plugins in the meantime. Many thanks. Regards, David ___ Zope3-users mailing list Zope3-users@zope.org http://mail.zope.org/mailman/listinfo/zope3-users ___ Zope3-users mailing list Zope3-users@zope.org http://mail.zope.org/mailman/listinfo/zope3-users
[Zope3-Users] Remote authentication
Hi. Has anyone got a bit of a blueprint for a remote authentication in zope 3. I wish to authenticate on a z3 site (site 1) using credentials stored on a different z3 site (site 2) over the Internet (otherwise would likely use LDAP). I do not want to maintain users on site 1. I only want users from a couple of groups on site 2 to be able to access site 1. I was thinking of using xmlrpc but will likely use a different transport with better security and encryption. Anyone doing anything similar at the moment that could share their experience. I am reading through the zope.app.authentication to refresh my memory on plugins in the meantime. Many thanks. Regards, David ___ Zope3-users mailing list Zope3-users@zope.org http://mail.zope.org/mailman/listinfo/zope3-users
