This service will be undergoing maintenance at 00:00 UTC, 2017-10-23 It is expected to last about 30 minutes
Bug 844821 - RFE: Open ID Authentication
RFE: Open ID Authentication
Product: Zanata
Classification: Community
Component: Authentication-Fedora (Show other bugs)
Unspecified Unspecified
unspecified Severity unspecified
: ---
: 2.0
Assigned To: Carlos Munoz
Ding-Yi Chen
Depends On:
  Show dependency treegraph
Reported: 2012-07-31 19:39 EDT by Carlos Munoz
Modified: 2012-11-07 01:19 EST (History)
1 user (show)

See Also:
Fixed In Version: 1.8.0-SNAPSHOT (20120924-1423)
Doc Type: Enhancement
Doc Text:
Feature: Open Id authentication is enabled for Fedora authentication Zanata instances. Reason: There was a need to allow other Open Id authentication options aside from Fedora. Result (if any): Users can now create a Zanata account using any Open Id. They can also link multiple open Ids to a single account.
Story Points: ---
Clone Of:
Last Closed: 2012-11-07 01:19:07 EST
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Carlos Munoz 2012-07-31 19:39:02 EDT
Allow login to Zanata using any open Id. Restrict projects for translation based on the type of open Id a user has.
Comment 1 Carlos Munoz 2012-09-05 19:15:37 EDT
Code changes:
Comment 2 Carlos Munoz 2012-09-05 20:56:11 EDT
Testing notes:

Users can now log in with any Open Id that they have. A few common options are offered when logging in, but the "OpenId" option should work for any open Id.

Once logged in, users can link all their other open Ids to their account via the profile section.

Also, if a user has created two accounts but wishes to merge them, the Profile section offers a way to do this. All permissions, language teams, Identities, etc. will be moved to their current account and the old account will be deactivated.

For open Id Zanata instances, the server will create special user roles for the users of the different open Id providers. A project can now be restricted to a set of Roles. Only users belonging to the approved roles will be able to translate this project.
Comment 3 Carlos Munoz 2012-09-09 21:12:47 EDT
Enabled internal authentication along with open id. In the future, we will be able to merge other authentication mechanisms more easily.

Comment 4 Carlos Munoz 2012-09-17 18:55:26 EDT
- Open Id authentication can now be enabled with Internal authentication simultaneously (These are the only two authentication systems that may be enabled in this fashion). If this is setup, users can register both with open Id and with Zanata credentials. After registering, users can enable internal authentication by setting a password, and/or add more open Id credentials.

- Under the admin menu there is now an option for "Role Assignment Rules". These rules determine the dynamic assignment of roles when a user signs in. All rules will be evaluated when a user logs in with a certain set of credentials (whether it's internal auth credentials, kerberos, openid, etc.). The rules will evaluate the policy (authentication type), the user name used (against a regular expression) and will assign a user role accordingly.

See Also:
Comment 5 Ding-Yi Chen 2012-09-20 00:45:05 EDT
Tested with Zanata version 1.8.0-SNAPSHOT (20120920-0016)

It works when the identities were added from "Manage Identities".

However, it does not work as new user registration.

Comment 6 Carlos Munoz 2012-09-20 19:20:12 EDT
First Open Id login was not properly redirecting to the "Create Account" section. Changed the conditions for this navigation to happen.

Comment 7 Ding-Yi Chen 2012-09-24 01:33:59 EDT
VERIFIED with Zanata version 1.8.0-SNAPSHOT (20120924-1423)
Comment 8 Sean Flanigan 2012-11-07 01:19:07 EST
Fix released in Zanata 2.0.

Note You need to log in before you can comment on or make changes to this bug.