I can't comment on all your questions - especially not implementation-
ones.
I wish to provide Open ID support for this.
I went through many posts and the
http://turbogears.org/2.1/docs/main/Auth/OpenID.html
tutorial in TG web site.
Before starting the implementation, I need to clear the following
doubts.
*)Whether I will need any up-gradation from TG2.0 to the current
TG2.1b version?
No idea.
*)I am currently using User, Group, Permission classes provided by the
TG quickstart. The application needs Group and Permissions
information very much. Can I use the OpenID for authentication in this
scenario?
You seem to confuse authentication with authorization. Authentication
is the process of identifying somebody. Authorization is the process
of granting him or her access to certain parts of your application.
OpenID is AFAIK solely for authentication purposes. So your above
question is answered "yes". But your Group and Permissions are about
*authorization*. And that OpenID can't provide. How should it? If you
rely on a 3rd parties user info to grant access to your site (beyond
the simplest "I know you"), what hinders me to create my own OpenID
provider, log in with it & have the "I'm superuser, give me all
access"-group? Nothing.
So what has to happen is this:
- for every OpenID-user, or at least every OpenID-user that needs
elevated privileges, create a password-less "shadow-account" in your
database.
- add groups and permissions to that how you see fit.
That's it.
*)I am currently using repoze.what predicates in many controllers. If
going through the OpenID way, whether I will require any changes in
these controllers?
No, you won't, as they base on the plugins data provided already.
*)From where I will get the necessary documentation for implementing
OpenID in TG2.0?
No idea.
Diez
--
You received this message because you are subscribed to the Google Groups
"TurboGears" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/turbogears?hl=en.
