Beefy Boxes and Bandwidth Generously Provided by pair Networks
Do you know where your variables are?
 
PerlMonks  

Web Authorization

by Eyck (Priest)
on Dec 29, 2005 at 06:43 UTC ( #519720=perlquestion: print w/replies, xml ) Need Help??
Eyck has asked for the wisdom of the Perl Monks concerning the following question:

Esteemed monks, I'm seeking a simple, multi-server, multi-app authorisation method. Those that I know of, are M$ Passport, Liberty Alliance's solution, and Stanford University WebAuth (http://webauthv3.stanford.edu/).

Do monks have any experience with those? Are there others worth mentioning? Why perlmonks isn't using them?

Replies are listed 'Best First'.
Re: Web Authorization
by davido (Archbishop) on Dec 29, 2005 at 07:55 UTC

    Why perlmonks isn't using them?

    Because PerlMonks isn't guarding any significant secrets, besides the combination to the St Wall shrine's maintenance access panel.

    Seriously, we allow posts by Anonymous Monk, which doesn't even require any kind of registration. The site has a moderation policy that seems to work fine for dealing with the occasional grafitti, and we use simple login techniques that also seem to work fine for our lightweight needs.

    The account numbers for the saintly fortunes are all stored off-site. ;)


    Dave

Re: Web Authorization
by aquarium (Curate) on Dec 29, 2005 at 11:27 UTC
    the most used "industry strenght" cross-platform and cross-system authentication systems are: LDAP, Radius, Kerberos....in no particular order. there are perl modules also for the above.
    the hardest line to type correctly is: stty erase ^H
Re: Web Authorization
by parv (Priest) on Dec 29, 2005 at 21:05 UTC
    Are you really looking for an authORIZation method and not for authENTICation one? Authorization checks if a person is allowed to perform a certain task; while authentication checks if a person really is what they claim to be.
Re: Web Authorization
by jhourcle (Prior) on Dec 29, 2005 at 14:30 UTC

    I'd second Kerberos ... RADIUS and LDAP can handle authentication, but they're not really geared for the same sort of thing (where the authenication service doesn't necessarily trust the server that's doing the authentication).

    As for reasons why Perl Monks isn't using it, I couldn't say, but it was discussed a while back in Single Sign-On?

    As for my experience w/ remote authentication, it's mostly in LDAP, and I've done a little work w/ RADIUS, but I'm no expert in it. (they're simple, and if you control all of the servers that are doing the authentication, they're fine)

Re: Web Authorization
by perrin (Chancellor) on Dec 29, 2005 at 19:54 UTC
    There are dozens of others out there, and they have been listed here before. If you search for Passport I expect you will find the other questions about them.

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: perlquestion [id://519720]
Approved by perl_lover
help
Chatterbox?
[ambrus]: Corion: ah, so you want a library that parses HTTP, and you want to do the IO yourself, and don't want a full AnyEvent wrapper.
[ambrus]: Corion: I think I parsed a HTTP header from a string with LWP once. You can definitely use that to create a HTTP message too. The problme is
[ambrus]: that if you do that, you'd have to find where each HTTP response ends, which is nontrivial if you want persistent connections (essential for performance if you have small requests).
[Corion]: ambrus: Yes, ideally an API that I feed the incoming data piece by piece and that I can ask "is that response done" and "what should I do next" and "please construct the appropriate redirect for me"
[Corion]: ambrus: Yes, ideally the module would do all that nasty stuff for me and give me a way to ask it what the current situation is
[ambrus]: Corion: you could also consider using some wrapper over the multi interface of curl, I think Net::Curl might be a good one, since implementing enough of what it expects from the event loop might be easier than a full AnyEvent interface.
[ambrus]: Corion: you could also consider using IO::Async and its POE driver and some HTTP module for it, but I don't know if that would solve your problems with AnyEvent+POE

How do I use this? | Other CB clients
Other Users?
Others having an uproarious good time at the Monastery: (16)
As of 2016-12-07 16:02 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    On a regular basis, I'm most likely to spy upon:













    Results (130 votes). Check out past polls.