ShaftNet & More

  • Status Assigned
  • Percent Complete
  • Task Type Feature Request
  • Category Services
  • Assigned To
    Solomon Peachy
  • Operating System All
  • Severity Low
  • Priority Very Low
  • Reported Version 1.0
  • Due in Version Undecided
  • Due Date Undecided
  • Votes
  • Private
Attached to Project: ShaftNet & More
Opened by Solomon Peachy - 2011-11-07

FS#454 - single-sign-on

It would be really nice to have a single signon for all shaftnet services. Currently we're sort of doing this via PAM and IMAP.

I'd prefer to do this via a postgres instance, but I'm not sure if this can be made to be robust. my old experiments with LDAP were failure-prone.

* RADIUS (?)
* system (ie PAM)
* horde
* imap/smtp
* po (?)
* $random_web_services

I definitely want flags to indicate which services are kosher. Restricting shell access in particular is important.


Available keyboard shortcuts


Task Details

Task Editing