summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorhttp://www.google.com/profiles/kari.pahula <http://www.google.com/profiles/kari.pahula@web>2009-12-12 06:33:21 -0500
committerJoey Hess <joey@kitenet.net>2009-12-12 06:33:21 -0500
commit5b48f1412e8117372af081c513b8c8a41176d4e7 (patch)
tree8b682250b0fe49254c5de4edcee132d4aa3872de
parent2b5dba4c49fce88d5783f6ccc41359e76b60c282 (diff)
Getting OpenID verified identity externally
-rw-r--r--doc/plugins/openid/discussion.mdwn5
1 files changed, 5 insertions, 0 deletions
diff --git a/doc/plugins/openid/discussion.mdwn b/doc/plugins/openid/discussion.mdwn
index 39e947b82..a88da8b9d 100644
--- a/doc/plugins/openid/discussion.mdwn
+++ b/doc/plugins/openid/discussion.mdwn
@@ -19,3 +19,8 @@ It looks like OpenID 2.0 (the only supported by Yahoo) is not supported in ikiwi
-- Ivan Z.
They have more on OpenID 2.0 in [their FAQ](http://developer.yahoo.com/openid/faq.html). --Ivan Z.
+
+----
+I'm trying to add a way to query the data saved by the OpenID plugin from outside of ikiwiki, to see what identity the user has been authenticated as, if any. I'm thinking of designating some directories as internal pages and check the identity against a list in a mod_perl access hook. I would also write a CGI script that would return a JSON formatted reply to tell if the user is authenticated for those pages and query it with AJAX and only render links to the internal pages if the user would have access to them. That's just a couple of ideas I'm working on first, but I can imagine that there's any number of other tricks that people could implement with that sort of a thing.
+
+Also, this isn't really specific to OpenID but to all auth plugins, but I'm going to use only OpenID for authentication so that's what I'm targeting right now. I suppose that would be worth its own TODO item. --[[kaol]]