[RFC] Auth Plugin Refactoring & User Integration
Re: [RFC] Auth Plugin Refactoring & User Integration
Agree mate, Even I need this. Sorry for bumping old topic.
-
- Registered User
- Posts: 2
- Joined: Sun Oct 28, 2012 10:48 am
third party authentication *only* for registration (option)
Not only third party.Hardolaf wrote:
- Admin Control Panel
- 3rd Party Services
- Choose which services to allow.
- …
I'd like an admin control panel to also – optionally – disallow the traditional e-mail-based approach to registration for end users. In other words, an option:
- third party authentication only for user registration.
Post-registration, as fallback:
+1Hardolaf wrote:I was thinking of requiring a password for all users in case they lose access to their third party login service. This password could be used for admin reauthentication.
Postscript: I just found [RFC] Registration & Login Overhaul (2011-05-17) … if some of my original post is covered elsewhere, apologies.
Re: [RFC] Auth Plugin Refactoring & User Integration
is this implemented now & available?
- imkingdavid
- Registered User
- Posts: 1050
- Joined: Thu Jul 30, 2009 12:06 pm
Re: [RFC] Auth Plugin Refactoring & User Integration
Not yet. I'm not sure of the status of the patch.
Re: [RFC] Auth Plugin Refactoring & User Integration
My forums is in competition with several Facebook groups (which is sad, historical threads/conversations are almost inaccessible and undiscoverable). Removing the friction of registration from my forum would greatly increase the chances that some of these users will reply to a thread started on the forum.
I'd love if this auth system could be adopted into the main branch/code base.
I'd love if this auth system could be adopted into the main branch/code base.
Re: [RFC] Auth Plugin Refactoring & User Integration
From what I read in the A1 release hightlighs here, isn't this merged? I can see the options in the ACP/Authentication and the code in "phpbb/auth/provider/oauth".
1) Long story short, I created a test board, registered with bit.ly, got a Key (client id) and Secret (client secret), changed the authentication method to OAuth in ACP but nothing happens.
Btw in my bit.ly app I have used the same url for both
So this isn't fully merged?
2) In ACP there is a dropdown for authentication method allow to select one method.
What if I want by board to support both Db and OAuth simultaneously?
edit: Damn, those highlights deceived me. If this was fully merged then probably it would be on another category
My second question still stands though.
1) Long story short, I created a test board, registered with bit.ly, got a Key (client id) and Secret (client secret), changed the authentication method to OAuth in ACP but nothing happens.
Btw in my bit.ly app I have used the same url for both
- App Link / Welcome page URL
- Redirect URIs
So this isn't fully merged?
2) In ACP there is a dropdown for authentication method allow to select one method.
What if I want by board to support both Db and OAuth simultaneously?
edit: Damn, those highlights deceived me. If this was fully merged then probably it would be on another category
My second question still stands though.
- imkingdavid
- Registered User
- Posts: 1050
- Joined: Thu Jul 30, 2009 12:06 pm
Re: [RFC] Auth Plugin Refactoring & User Integration
Yes it is fully merged. There is still missing documentation and the interface can use some work, but this is still alpha-quality software and changes will likely be made closer to the full release.
As for the second question, DB is a fallback when OAuth is selected. In fact, when you attempt to register with an Oauth provider, you still have to create a user in the database. You are then able to login with your username and password or via the oauth provider(s) you have set up and linked to the account.
As for the second question, DB is a fallback when OAuth is selected. In fact, when you attempt to register with an Oauth provider, you still have to create a user in the database. You are then able to login with your username and password or via the oauth provider(s) you have set up and linked to the account.
Re: [RFC] Auth Plugin Refactoring & User Integration
Thanks for the answers. Since there isn't much to do, I'll wait for the docs.
Re: [RFC] Auth Plugin Refactoring & User Integration
Hopefully, I should get around to finishing the registration process. Currently, to log in or register you need to do it through the log in page. I finished what was merged shortly before midterms started and I haven't had much time to work on this since. But please, give us feedback so that we can make it better. Also, documentation is forth coming.
Re: [RFC] Auth Plugin Refactoring & User Integration
Yes you are correct. A bit.ly button appears in the log in page.
I had to correct the redirect URIs in the bit.ly web app for this to work:
PS: I haven't tested google and fb oauth yet.
I had to correct the redirect URIs in the bit.ly web app for this to work:
- App Link / Welcome page URL: http://myhostname/phpBB3/
- Redirect URIs: http://myhostname/phpBB3/ucp.php?mode=l ... vice=bitly
Bit.ly allows sign-in with a bit.ly account, facebook or twitter so that's kinda an indirect twitter support I guess.You have attempted to login with an external service that is not yet connected to an account on this board. You must now either link this account to an existing account or create a new account.
PS: I haven't tested google and fb oauth yet.