Implement SSO on forum.nasqueron.org
Open, NormalPublic
Actions

Assigned To

None

Authored By

	dereckson
	Mar 31 2015, 02:30

Description

Documentation

https://meta.discourse.org/t/official-single-sign-on-for-discourse/13045

Related Objects
Search...

Status	Assigned	Task
Open	None	T270 Implement SSO on forum.nasqueron.org
Open	None	T271 Deploy Auth Grove to login.nasqueron.org
Open	None	T343 Provide a migration path from Espace Win accounts to Nasqueron accounts
Open	None	T347 Allow to register an account through a social login
Open	None	T344 Convert forum.nasqueron.org accounts into Nasqueron accounts
Resolved	None	T838 Disable gulp-notify
Wontfix	dereckson	T837 Investigate gulp issue to minimize CSS
Resolved	None	T836 Update MySQL users table in migration
Resolved	dereckson	T835 Commit storage/ folder
Resolved	dereckson	T839 Current URL detection code in views aren't coherent
Resolved	dereckson	T492 When using a front-end server with SSL termination, back-end serves http:// links.
Invalid	None	T878 Salt Auth Grove passwords
Resolved	dereckson	T840 Upgrade to Laravel 5.2
Resolved	dereckson	T1452 Upgrade PHP version in Auth Grove Docker image
Open	None	T475 [Login capability] Discourse
Open	None	T478 Validate e-mail addresses

Event Timeline

dereckson created this task.Mar 31 2015, 02:30

dereckson raised the priority of this task from to Normal.

dereckson updated the task description. (Show Details)

dereckson added a project: Forum.

dereckson added a subscriber: dereckson.

dereckson added a project: Auth Grove.Mar 31 2015, 02:33

dereckson moved this task from Backlog to Needs volunteer on the Forum board.Apr 6 2015, 02:54

dereckson added a subtask: T475: [Login capability] Discourse.Jul 10 2015, 23:41

dereckson added a subtask: T478: Validate e-mail addresses.Jul 11 2015, 00:59

dereckson moved this task from Backlog to Add services on the Auth Grove board.Jul 1 2016, 19:31

dereckson closed subtask T271: Deploy Auth Grove to login.nasqueron.org as Resolved.Sep 22 2018, 10:51

dereckson reopened subtask T271: Deploy Auth Grove to login.nasqueron.org as Open.Sep 22 2018, 10:51

Development moratoire

Per T1771, we're currently considering implementing Keycloak as a reference identity management and SSO login product.

This product exposes a LDAP, OIDC (OpenID Connect) and SAML capabilities to authenticate users and applications. It seems to solve our main problems.

From there, it's not clear what we do with Auth Grove:

Scenario A. We drop it, and as users we directly interact with Keycloak. Development is discontinued.
Scenario B. Auth Grove is morphed into a front-end to use Keycloak: we expose current information, and interact with Keycloak API (through a generic set of classes to allow to switch to another solution) to set credentials and metadata.
Scenario C. We use both Keycloak AND Auth Grove. We don't make integrate with Keycloak at all, to stay independent and not vendor-locked.

While T1771 evaluation is ongoing, a moratoire covers any development activities related to Auth Grove, with the obvious exception of security issues.
This moratoire cover fully or partly this task.

Implement SSO on forum.nasqueron.orgOpen, NormalPublicActions

Description

Related ObjectsSearch...

Event Timeline

Implement SSO on forum.nasqueron.org
Open, NormalPublic
Actions

Related Objects
Search...