[
https://issues.apache.org/jira/browse/SLING-839?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12667271#action_12667271
]
Rory Douglas commented on SLING-839:
------------------------------------
I think a stupid provider would be fine, but it would need to handle the OpenID
protocol details correctly (message signing, nonce generation), since the
client verifies the response message. I didn't take the time to figure out if
that was something easy to fake without using existing libraries.
> OpenID AuthenticationHandler
> ----------------------------
>
> Key: SLING-839
> URL: https://issues.apache.org/jira/browse/SLING-839
> Project: Sling
> Issue Type: New Feature
> Components: Engine, Extensions, General
> Reporter: Rory Douglas
> Priority: Minor
> Attachments: openidauth.zip
>
>
> An implementation of AuthenticationHandler for authenticating users against
> OpenID providers. Includes basic UI for login & logout.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
