[
https://issues.apache.org/jira/browse/SLING-1563?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Justin Edelson updated SLING-1563:
----------------------------------
Component/s: Authentication
(was: Extensions)
> Automatically create a User object for an OpenID identifier
> -----------------------------------------------------------
>
> Key: SLING-1563
> URL: https://issues.apache.org/jira/browse/SLING-1563
> Project: Sling
> Issue Type: New Feature
> Components: Authentication
> Reporter: Justin Edelson
>
> Similar to how CRX supports autocreating User accounts when a successful LDAP
> authentication is done
> (http://dev.day.com/docs/en/crx/current/administering/ldap_authentication.html#Auto
> Creation), it would be nice if the OpenID authentication bundle could
> support autocreate a user account under a certain set of circumstances.
> * This function should be *disabled* by default.
> * Use AX (http://openid.net/specs/openid-attribute-exchange-1_0.html) to
> request a set of user attributes from the identity provider and the
> configurable mappings between these attributes and User node properties.
> * Since OpenID doesn't support groups, a default set of one or more groups
> needs to be specified for new users.
> * A regex can be supplied for OpenID identifiers to limit which identifiers
> will result in auto-generated User accounts
> I'm doubtful that this should be done in the openid auth bundle. An
> alternative would be to create a whiteboard to look for implementations of
> DYU's Listener interface. Newer DYU versions have AX support via a Listener
> and I'm pretty sure the autocreation could be done in a Listener as well.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
