librelist archives

« back to archive

Single Sign On

Single Sign On

From:
Jonathan Chen
Date:
2013-07-01 @ 16:03
Hey all,

Long story short, we are trying to implement a single sign on idea among
our applications (flask and non-flask). We looked around the internet and
most of them are either too "enterprisey" or too expensive for us to really
invest into it at this stage, so we are building a simple one in-house for
the time being.

Some of our non-flask applications don't have the capability to do single
sign on without buying a huge package for it, so we were looking at
possibly using an interface that would do a credential check and then in
the background log the user in and pass all of the cookies, etc. through to
the end-user client.

I have been doing some simple prototypes, but have some issues here and
there to get some things done. Any tips or advice to push me in the right
direction?

~Jonathan C.

Re: [flask] Single Sign On

From:
David Baumgold
Date:
2013-07-01 @ 16:15
Have you considered Mozilla Persona? http://www.mozilla.org/en-US/persona/
It's free, simple, and should do what you need. Also, there are examples 
of how to implement it using Flask!
-DB

On Jul 1, 2013, at 12:03 PM, Jonathan Chen <tamasiaina@gmail.com> wrote:

> Hey all,
> 
> Long story short, we are trying to implement a single sign on idea among
our applications (flask and non-flask). We looked around the internet and 
most of them are either too "enterprisey" or too expensive for us to 
really invest into it at this stage, so we are building a simple one 
in-house for the time being.
> 
> Some of our non-flask applications don't have the capability to do 
single sign on without buying a huge package for it, so we were looking at
possibly using an interface that would do a credential check and then in 
the background log the user in and pass all of the cookies, etc. through 
to the end-user client.
> 
> I have been doing some simple prototypes, but have some issues here and 
there to get some things done. Any tips or advice to push me in the right 
direction? 
> 
> ~Jonathan C.

Re: [flask] Single Sign On

From:
Jonathan Chen
Date:
2013-07-01 @ 17:09
Thanks for some of the input, we are planning to use OAUTH and our LDAP for
authentication. The issue I'm having though is getting it to work with
legacy apps that don't have standard ways for single sign on. I was just
thinking of doing a post with the username/passwsord to the server and pass
the cookies through.


~Jonathan C.


On Mon, Jul 1, 2013 at 9:15 AM, David Baumgold <david@davidbaumgold.com>wrote:

> Have you considered Mozilla Persona? http://www.mozilla.org/en-US/persona/ It's
> free, simple, and should do what you need. Also, there are examples of how
> to implement it using Flask!
> -DB
>
> On Jul 1, 2013, at 12:03 PM, Jonathan Chen <tamasiaina@gmail.com> wrote:
>
> Hey all,
>
> Long story short, we are trying to implement a single sign on idea among
> our applications (flask and non-flask). We looked around the internet and
> most of them are either too "enterprisey" or too expensive for us to really
> invest into it at this stage, so we are building a simple one in-house for
> the time being.
>
> Some of our non-flask applications don't have the capability to do single
> sign on without buying a huge package for it, so we were looking at
> possibly using an interface that would do a credential check and then in
> the background log the user in and pass all of the cookies, etc. through to
> the end-user client.
>
> I have been doing some simple prototypes, but have some issues here and
> there to get some things done. Any tips or advice to push me in the right
> direction?
>
> ~Jonathan C.
>
>

Re: [flask] Single Sign On

From:
Stefane Fermigier
Date:
2013-07-01 @ 16:08
You may want to have a look at https://github.com/hasgeek/lastuser ?

  S.

On Jul 1, 2013, at 6:03 PM, Jonathan Chen wrote:

> Hey all,
> 
> Long story short, we are trying to implement a single sign on idea among
our applications (flask and non-flask). We looked around the internet and 
most of them are either too "enterprisey" or too expensive for us to 
really invest into it at this stage, so we are building a simple one 
in-house for the time being.
> 
> Some of our non-flask applications don't have the capability to do 
single sign on without buying a huge package for it, so we were looking at
possibly using an interface that would do a credential check and then in 
the background log the user in and pass all of the cookies, etc. through 
to the end-user client.
> 
> I have been doing some simple prototypes, but have some issues here and 
there to get some things done. Any tips or advice to push me in the right 
direction? 
> 
> ~Jonathan C.

-- 
Stefane Fermigier - http://fermigier.com/ - http://twitter.com/sfermigier 
- http://linkedin.com/in/sfermigier
Founder & CEO, Abilian - Enterprise Social Software - http://www.abilian.com/
Founder & Board Member, Nuxeo - Open Source ECM - http://www.nuxeo.com/
Co-Founder and Chairman, Free&OSS Cluster - http://www.gt-logiciel-libre.org/
Co-Founder & Vice-President, National Council for Free&OSS - http://cnll.fr/
Vice President, Open World Forum 2013 - http://openworldforum.org/
"Well done is better than well said." - Benjamin Franklin
"There's no such thing as can't. You always have a choice." - Ken Gor