[Catalyst] OpenID authentication
Benjamin Trott
ben at sixapart.com
Sun Nov 13 10:19:57 CET 2005
OpenID is a credential verifier. It provides identity based on a URI, which
is first "claimed" by a user, then verified/asserted by the third-party
service that the URI points to using service auto-discovery.
So, that's all the plugin does--it's a very simple wrapper around
Net::OpenID::Consumer, which does all of the actual verification.
Could you point me at the new authentication/authorization stuff you're
referring to? And let me know what other ideas you have re: simplification.
Thanks,
Ben
On 11/13/05 1:12 AM, "Yuval Kogman" <nothingmuch at woobling.org> wrote:
> On Fri, Nov 11, 2005 at 23:02:14 -0800, Benjamin Trott wrote:
>> Hi,
>>
>> I just uploaded to CPAN version 0.01 of
>> Catalyst::Plugin::Authentication::OpenID, which provides support for using
>> OpenID auth in Catalyst apps. More about OpenID: <http://www.openid.net/>.
>
> Please try to integrate it with the new authentication/authorization
> stuff - i'm not sure whether OpenID is more of a backend-less-store
> or a credential verifier, but i'd be very happy to debate this on
> irc.perl.org's #catalyst or even here[1].
>
> The new plugins decouple the aspects of
> auth*:
>
> * storing user info
>
> * verifying user credentials
>
> * remembering the authenticated status of a user using sessions
>
> * allowing or denying access to parts of the application based on
> the authenticated user's authorizations
>
> And it seems like the code you wrote could be slightly simplified,
> and also standardized to fit with the other authentication plugins,
> so that the authorization plugins can get along with it better.
>
> Ciao!
>
> 1. Based on your example code I think the OpenID stuff is a credential
> verifier that is supposed to interface with a store that knows about
> OpenIDs.
More information about the Catalyst
mailing list