reactos/web: PHP subsystems of the ReactOS Website - web

mirror of https://github.com/reactos/web.git synced 2024-11-23 03:39:49 +00:00

PHP subsystems of the ReactOS Website

Go to file

Colin Finck 8c5fa454fa [ROSLOGIN] A simple Self-Service and Single-Sign-On around an LDAP user directory RosLogin is a simple user Self-Service and Single-Sign-On system for a single site (such as *.reactos.org) written in PHP and licensed under AGPLv3 or later. In contrast to CAS, OAuth, SAML or Shibboleth-based solutions, RosLogin is much more lightweight due to its focus on a single site. Each login sets a site-wide cookie, which is sufficient to identify a user on every page of the domain and subdomains. No Public-Key-Infrastructure or XML message passing needs to be set up for this. While many Single-Sign-On solutions only provide Login and Logout functionality, RosLogin also comes with a Self-Service that handles registrations, user data changes, and forgotten credentials. Finally, PHP web applications like MediaWiki are first-class citizens for RosLogin. They can easily get information about the currently logged in user by instantiating `RosLogin` and calling the `isLoggedIn` and `getUserInformation` methods, thereby implementing SSO functionality. RosLogin also takes care to only allow user names that do not conflict with the user name constraints of popular PHP applications. By managing the entire user information in an LDAP directory (inetOrgPerson schema), RosLogin additionally allows a basic integration of applications without writing any custom code. The migration to RosLogin will decouple our user database from the CMS, easing a later migration to any other CMS, and put an end to weirdnesses such as the 30 minute delay for account changes in JIRA.	2018-04-30 17:04:43 +02:00
resources	[ROSLOGIN] A simple Self-Service and Single-Sign-On around an LDAP user directory	2018-04-30 17:04:43 +02:00
www	[ROSLOGIN] A simple Self-Service and Single-Sign-On around an LDAP user directory	2018-04-30 17:04:43 +02:00

Colin Finck 8c5fa454fa [ROSLOGIN] A simple Self-Service and Single-Sign-On around an LDAP user directory

RosLogin is a simple user Self-Service and Single-Sign-On system for a single site
(such as *.reactos.org) written in PHP and licensed under AGPLv3 or later.

In contrast to CAS, OAuth, SAML or Shibboleth-based solutions, RosLogin is much more
lightweight due to its focus on a single site.
Each login sets a site-wide cookie, which is sufficient to identify a user on every
page of the domain and subdomains.
No Public-Key-Infrastructure or XML message passing needs to be set up for this.

While many Single-Sign-On solutions only provide Login and Logout functionality,
RosLogin also comes with a Self-Service that handles registrations, user data changes,
and forgotten credentials.

Finally, PHP web applications like MediaWiki are first-class citizens for RosLogin.
They can easily get information about the currently logged in user by instantiating
`RosLogin` and calling the `isLoggedIn` and `getUserInformation` methods, thereby
implementing SSO functionality.
RosLogin also takes care to only allow user names that do not conflict with the user
name constraints of popular PHP applications.

By managing the entire user information in an LDAP directory (inetOrgPerson schema),
RosLogin additionally allows a basic integration of applications without writing any
custom code.

The migration to RosLogin will decouple our user database from the CMS, easing a later
migration to any other CMS, and put an end to weirdnesses such as the 30 minute delay
for account changes in JIRA.

2018-04-30 17:04:43 +02:00

resources

[ROSLOGIN] A simple Self-Service and Single-Sign-On around an LDAP user directory

2018-04-30 17:04:43 +02:00

www

[ROSLOGIN] A simple Self-Service and Single-Sign-On around an LDAP user directory

2018-04-30 17:04:43 +02:00