Red Hat Bugzilla – Bug 844821
RFE: Open ID Authentication
Last modified: 2012-11-07 01:19:07 EST
Allow login to Zanata using any open Id. Restrict projects for translation based on the type of open Id a user has.
Users can now log in with any Open Id that they have. A few common options are offered when logging in, but the "OpenId" option should work for any open Id.
Once logged in, users can link all their other open Ids to their account via the profile section.
Also, if a user has created two accounts but wishes to merge them, the Profile section offers a way to do this. All permissions, language teams, Identities, etc. will be moved to their current account and the old account will be deactivated.
For open Id Zanata instances, the server will create special user roles for the users of the different open Id providers. A project can now be restricted to a set of Roles. Only users belonging to the approved roles will be able to translate this project.
Enabled internal authentication along with open id. In the future, we will be able to merge other authentication mechanisms more easily.
- Open Id authentication can now be enabled with Internal authentication simultaneously (These are the only two authentication systems that may be enabled in this fashion). If this is setup, users can register both with open Id and with Zanata credentials. After registering, users can enable internal authentication by setting a password, and/or add more open Id credentials.
- Under the admin menu there is now an option for "Role Assignment Rules". These rules determine the dynamic assignment of roles when a user signs in. All rules will be evaluated when a user logs in with a certain set of credentials (whether it's internal auth credentials, kerberos, openid, etc.). The rules will evaluate the policy (authentication type), the user name used (against a regular expression) and will assign a user role accordingly.
Tested with Zanata version 1.8.0-SNAPSHOT (20120920-0016)
It works when the identities were added from "Manage Identities".
However, it does not work as new user registration.
First Open Id login was not properly redirecting to the "Create Account" section. Changed the conditions for this navigation to happen.
VERIFIED with Zanata version 1.8.0-SNAPSHOT (20120924-1423)
Fix released in Zanata 2.0.