![](https://seccdn.libravatar.org/avatar/0295f9d5d76379b5da73427b67acd395.jpg?s=120&d=mm&r=g)
Feature changed by: Thomas Schmidt (digitaltomm) Feature #309070, revision 2 Title: Allow auth Buildservice: Evaluation Priority Requester: Important Projectmanager: Desirable Requested by: Adrian Schröter (adriansuse) Description: Implement authentification plugin for api which allows authentification against remote http web server. This may need changes in session handling. We want to use this plugin and setup for opensuse.org and connect api.o. o and build.o.o directly to internet without iChain proxy. Discussion: #1: Adrian Schröter (adriansuse) (2010-02-23 12:06:04) Tom, we need your expertise here, what is possible with rails and what makes sense. + #2: Thomas Schmidt (digitaltomm) (2010-02-24 18:22:49) (reply to #1) + This is possible for the api by modularizing our login (ldap, db, + opensuse-auth) methods. But the auth server would have to be able to + authenticate the users password with the novell ldap, we are usually + not allowed to do this.Session handling would be needed here to avoid + authenticating each request, and should be not much work. + For the communication between the webclient and the api we need a + secure way to tell the api that the user is already authenticated, + maybe with a secret key? + -- openSUSE Feature: https://features.opensuse.org/309070