Infrastructure Team/Central Login

Summary

This is initiative to permit a user to access multiple SL resources while providing their credentials (such as userid and password) only once.

Resources to authenticate on

Authenticate front-end methods

Preliminary list of possible front-end methods to authenticate users.

  • For now https://obs.sugarlabs.org requires Basic HTTP Auth.
  • CAS, most regular way with a need to provide login/password, useful for people who are out of Sugar Shell (and certificate based method does not work implicitly) and either casual visitor or not technical skilled enough to take care about user side certificates.
  • Users certificates, useful for people who need to be authenticated from Sugar Shell when Sugar might do some routines under the hood.