On 2015-02-10 12:33:29 -0500 (-0500), Donald Stufft wrote: [...] > In a slightly hypocritical view point, I actually think that at > some point we should get something like id.python.org which is an > IdP and switch all of the *.python.org sites to authenticate > against that instead of keeping local user accounts. This would > reduce the number of passwords that Python inflicts on people but > it still keeps authentication within our (PSF/Python/whatever)'s > control. This is more along the lines of implementing SSO using a > federated auth technology than actual federated auth though.
The OpenStack community is in the process of doing this already (for exactly all of the same reasons you stated), so I'm happy to discuss details or point you to relevant ML/IRC conversations and software if it helps in any way. -- Jeremy Stanley _______________________________________________ Distutils-SIG maillist - Distutils-SIG@python.org https://mail.python.org/mailman/listinfo/distutils-sig