dhis2-users team mailing list archive
-
dhis2-users team
-
Mailing list archive
-
Message #02076
Re: OpenID in DHIS2
Thanks for your quick answer!
We want to use OpenID just for authentication. We would use the application (DHIS2)’s authorization.
However, I have to be able to set several OpenID providers that we will “accept” as valid providers.
Liliana
From: Saptarshi Purkayastha [mailto:sunbiz@xxxxxxxxx]
Sent: 09 April 2013 17:05
To: PIEVAROLI, Liliana Marcela
Cc: dhis2-users@xxxxxxxxxxxxxxxxxxx; SCHNITZLER, Johannes Christof
Subject: Re: [Dhis2-users] OpenID in DHIS2
Hi Liliana,
We had a couple of months back attempted a case to use CAS (http://www.jasig.org/cas) to use common authentication between DHIS2 and Drupal
This was for an implementation in Vietnam
It was fairly simple for CAS to use the DHIS2 database and allow login into drupal by sharing the same user/pass
With LDAP, the challenge is to be able to map the authorization and not authentication.
If you just want to share authentication, and keep the authorization inside DHIS2 as it is... it should be fairly simple... just like we did with the CAS case.
Spring already provide OpenIDAuthenticationFilter for this purpose.
I want to confirm, do you want to do just authentication or authorization?
Is there a default role that you'd like to give anyone who authenticates using the OpenID? and do you want this role to be configurable?
There are those complexities that can be avoided, if you just want to use OpenID server for authentication and then let DHIS2 deal with everything else.
---
Regards,
Saptarshi PURKAYASTHA
My Tech Blog: http://sunnytalkstech.blogspot.com
You Live by CHOICE, Not by CHANCE
On 9 April 2013 16:45, PIEVAROLI, Liliana Marcela <pievarolil@xxxxxxx<mailto:pievarolil@xxxxxxx>> wrote:
Hi there,
I am working for WHO (World Health Organization). We just installed DHIS2 in our dev/test servers. We would like to have a proof of concept to see whether DHIS2 can be used to collect health data from countries and/or regions by many programmes.
Currently, our IT department has implemented OpenID for our two ADs (the internal one, called WIMS, and the external one, called ADS).
Our department is promoting the use of OpenID for authentication (instead of LDAP, for example).
Has anyone implemented in DHIS2 authentication using (a list of) OpenID (providers)?
If not, how long will it take to do this?
Cheers,
Liliana Pievaroli
P/S: We have already implemented code in .Net, PHP (including Drupal) and it is working fine.
Willing to share that code, if this can help.
P/S2: It may not be the last time you hear from me…
_______________________________________________
Mailing list: https://launchpad.net/~dhis2-users
Post to : dhis2-users@xxxxxxxxxxxxxxxxxxx<mailto:dhis2-users@xxxxxxxxxxxxxxxxxxx>
Unsubscribe : https://launchpad.net/~dhis2-users
More help : https://help.launchpad.net/ListHelp
References