Le 22/08/2017 à 18:51, Xavier a écrit :
> Le 22/08/2017 à 16:29, gregor herrmann a écrit :
>> On Tue, 22 Aug 2017 09:45:10 +0200, Alexander Wirt wrote:
>>
There is lemonldap-ng already packaged which provides saml, oauth,
openid-connect, CAS, and more (both identity provider and service
>
Le 25/08/2017 à 16:48, Luca Filipozzi a écrit :
> On Fri, Aug 25, 2017 at 10:39:14AM +0200, Clément OUDOT wrote:
>> 2017-08-25 6:59 GMT+02:00 Luca Filipozzi :
>>> On Wed, Aug 23, 2017 at 09:05:32AM +0200, Xavier wrote:
Le 23/08/2017 à 08:46, Alexander Wirt a écrit :
> On Wed, 23 Aug 2017,
Le 25/08/2017 à 10:39, Clément OUDOT a écrit :
> 2017-08-25 6:59 GMT+02:00 Luca Filipozzi :
>> On Wed, Aug 23, 2017 at 09:05:32AM +0200, Xavier wrote:
>>> Le 23/08/2017 à 08:46, Alexander Wirt a écrit :
On Wed, 23 Aug 2017, Philip Hands wrote:
> Michael Lustfield writes:
>
>
On Fri, Aug 25, 2017 at 10:39:14AM +0200, Clément OUDOT wrote:
> 2017-08-25 6:59 GMT+02:00 Luca Filipozzi :
> > On Wed, Aug 23, 2017 at 09:05:32AM +0200, Xavier wrote:
> >> Le 23/08/2017 à 08:46, Alexander Wirt a écrit :
> >> > On Wed, 23 Aug 2017, Philip Hands wrote:
> >> >
> >> >> Michael Lustfie
2017-08-25 6:59 GMT+02:00 Luca Filipozzi :
> On Wed, Aug 23, 2017 at 09:05:32AM +0200, Xavier wrote:
>> Le 23/08/2017 à 08:46, Alexander Wirt a écrit :
>> > On Wed, 23 Aug 2017, Philip Hands wrote:
>> >
>> >> Michael Lustfield writes:
>> >>
>> >> ...
>> >>> Using Gitlab (or any VCS) as the user db
On Fri, 25 Aug 2017, Luca Filipozzi wrote:
> On Wed, Aug 23, 2017 at 09:05:32AM +0200, Xavier wrote:
> > Le 23/08/2017 à 08:46, Alexander Wirt a écrit :
> > > On Wed, 23 Aug 2017, Philip Hands wrote:
> > >
> > >> Michael Lustfield writes:
> > >>
> > >> ...
> > >>> Using Gitlab (or any VCS) as th
On Wed, Aug 23, 2017 at 09:05:32AM +0200, Xavier wrote:
> Le 23/08/2017 à 08:46, Alexander Wirt a écrit :
> > On Wed, 23 Aug 2017, Philip Hands wrote:
> >
> >> Michael Lustfield writes:
> >>
> >> ...
> >>> Using Gitlab (or any VCS) as the user db for guest accounts means adding a
> >>> dependency
Le 23/08/2017 à 08:46, Alexander Wirt a écrit :
> On Wed, 23 Aug 2017, Philip Hands wrote:
>
>> Michael Lustfield writes:
>>
>> ...
>>> Using Gitlab (or any VCS) as the user db for guest accounts means adding a
>>> dependency that could block future upgrades... kinda like now. This is not a
>>> f
On Wed, 23 Aug 2017, Philip Hands wrote:
> Michael Lustfield writes:
>
> ...
> > Using Gitlab (or any VCS) as the user db for guest accounts means adding a
> > dependency that could block future upgrades... kinda like now. This is not a
> > future-proof design and will come at a future cost.
>
Michael Lustfield writes:
...
> Using Gitlab (or any VCS) as the user db for guest accounts means adding a
> dependency that could block future upgrades... kinda like now. This is not a
> future-proof design and will come at a future cost.
I suspect that Alexander's intent was just to avoid bloc
On Tue, 22 Aug 2017 18:10:39 +0200
Geert Stappers wrote:
> On Tue, Aug 22, 2017 at 04:29:49PM +0200, gregor herrmann wrote:
> > On Tue, 22 Aug 2017 09:45:10 +0200, Alexander Wirt wrote:
> >
> > > Specifially one LDAP (db.d.o.) Backend and one Oauth2 (gitlab) Backend?
> > [...]
> [...]
This se
Le 22/08/2017 à 16:29, gregor herrmann a écrit :
> On Tue, 22 Aug 2017 09:45:10 +0200, Alexander Wirt wrote:
>
>>> There is lemonldap-ng already packaged which provides saml, oauth,
>>> openid-connect, CAS, and more (both identity provider and service
>>> provider). It works with users in ldap but
On Tue, Aug 22, 2017 at 04:29:49PM +0200, gregor herrmann wrote:
> On Tue, 22 Aug 2017 09:45:10 +0200, Alexander Wirt wrote:
>
> > > There is lemonldap-ng already packaged which provides saml, oauth,
> > > openid-connect, CAS, and more (both identity provider and service
> > > provider). It works
On Tue, 22 Aug 2017 09:45:10 +0200, Alexander Wirt wrote:
> > There is lemonldap-ng already packaged which provides saml, oauth,
> > openid-connect, CAS, and more (both identity provider and service
> > provider). It works with users in ldap but doesn't have a user management
> > interface.
> >
>
On Tue, 22 Aug 2017, Mathieu Parent wrote:
> Hello,
>
> Le mardi 22 août 2017, Luca Filipozzi a écrit :
> > On Mon, Aug 21, 2017 at 04:35:59PM -0700, Raoul Snyman wrote:
> >> On 2017-08-21 5:48, Alexander Wirt wrote:
> >> > > I second that: Using LDAP as a single source of truth. It's also
> >>
On Aug 22, 2017 8:23 AM, "Luca Filipozzi" wrote:
> Has anyone looked at Keycloak? http://www.keycloak.org/
I have and deployed it for others in production. Not an unreasonable
option.
I'm running it in production as well. If you need some help to
evaluate/configure it, just ping me.
Philipp
Hello,
Le mardi 22 août 2017, Luca Filipozzi a écrit :
> On Mon, Aug 21, 2017 at 04:35:59PM -0700, Raoul Snyman wrote:
>> On 2017-08-21 5:48, Alexander Wirt wrote:
>> > > I second that: Using LDAP as a single source of truth. It's also
>> > > possible to store SSH keys etc. in LDAP.
>> > Then som
On Mon, Aug 21, 2017 at 04:35:59PM -0700, Raoul Snyman wrote:
> On 2017-08-21 5:48, Alexander Wirt wrote:
> > > I second that: Using LDAP as a single source of truth. It's also
> > > possible to store SSH keys etc. in LDAP.
> > Then someone has to go ahead and develop a complete usermangement for
>
On 2017-08-21 5:48, Alexander Wirt wrote:
I second that: Using LDAP as a single source of truth. It's also
possible to store SSH keys etc. in LDAP.
Then someone has to go ahead and develop a complete usermangement for
sso.d.o. As it is we can't work with software that is maybe coming at
some
po
On Mon, 21 Aug 2017, Georg Faerber wrote:
> On 17-08-21 11:18:05, Enrico Zini wrote:
> > On Sun, Aug 20, 2017 at 04:28:05PM +, Luca Filipozzi wrote:
> >
> > > As expressed during the DC17 DSA and Cloud BoFs, I'm in favour of two
> > > related but orthogonal things:
> > > 1 collapsing user man
On 17-08-21 11:18:05, Enrico Zini wrote:
> On Sun, Aug 20, 2017 at 04:28:05PM +, Luca Filipozzi wrote:
>
> > As expressed during the DC17 DSA and Cloud BoFs, I'm in favour of two
> > related but orthogonal things:
> > 1 collapsing user management into a single user store (LDAP)**
>
> I really
On Sun, Aug 20, 2017 at 06:16:07PM +0200, Geert Stappers wrote:
> - Forwarded message from Enrico Zini -
> > SSO, as it is right now, is NOT a user managing thing. SSO is ONLY
> > taking existing users from one or more (two right now, db.d.o/alioth)
> > backends, and allows them to have a
On Sun, Aug 20, 2017 at 04:28:05PM +, Luca Filipozzi wrote:
> As expressed during the DC17 DSA and Cloud BoFs, I'm in favour of two
> related but orthogonal things:
> 1 collapsing user management into a single user store (LDAP)**
I really, really like the idea of having all the accounts in a
On 2017-08-20 16:28:05, Luca Filipozzi wrote:
> As expressed during the DC17 DSA and Cloud BoFs, I'm in favour of two
> related but orthogonal things:
> 1 collapsing user management into a single user store (LDAP)**
> 2 introducing SAML or OIDC IdPs so that we can tie into AWS, Azure, and
> GCP S
On Sun, Aug 20, 2017 at 06:16:07PM +0200, Geert Stappers wrote:
>
> Previous on mailinglist
> alioth-staff-replacem...@lists.alioth.debian.org
>
> IMHO is debian-devel@lists.debian.org a better place for this.
>
>
> - Forwarded message from Enrico Zini -
>
> Date: Sun, 20 Aug 2017 18:
Previous on mailinglist alioth-staff-replacem...@lists.alioth.debian.org
IMHO is debian-devel@lists.debian.org a better place for this.
- Forwarded message from Enrico Zini -
Date: Sun, 20 Aug 2017 18:03:26 +0200
From: Enrico Zini
To: alioth-staff-replacem...@lists.alioth.debian.org
26 matches
Mail list logo
