[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Auth]Project discussion

From: Scott
Subject: Re: [Auth]Project discussion
Date: Sun, 15 Jul 2001 14:26:03 -0700
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.2+) Gecko/20010714

Nick Lothian wrote:

How about the .gnu auth server also being used as a proxy?

That way you could have the user hitting the page.
Going to the section that needs .gnu auth Which gives them a page with links to various .gnu servers that authorised for that page.

The links in the form of (just as an example)
etc etc. each server being one trusted by the site owner.

From that each .gnu auth server goes to a user/password page. And then
if the user authenticates acts as a https proxy between the site and the user.

It's ugly. But it will work with _any_ browser that can handle forms. uses
existing technology and doesn't involve any plugins.

And as far as actual authentication goes it's all up to each individual .gnu auth server.

Not too bad. Why use the proxy system at all, though - why not just have a
set of links to trusted authentication sites. When the user clicks on one,
it goes to that site, they enter username/password, and then are redirected
back to the appropriate page.

It does remove a lot of the flexibility though - the site can't put the
login form on their own site.

I guess another possibility would be to have a login on the site, and a
dropdown menu of trusted authentication sites (obviously all would need to
support the same interface), and then the user is authenticated against
whatever service they choose.

The biggest problem with this is that it makes it difficult for new
authentication services to be added - it requires code changes on every
login page that wants to use them.
Auth mailing list

I think a proxy sounds like a good idea, for the reason that web site forms are all different and as soon as one dotGNU user checks the form when using DotGNU, this could be kept as a reference for working with this site in the future so better form guessing. for example if DotGNU:fname in Yahoo means input:firstname, but on amazon the form would ask for first name as input:firname then DotGNU could keep track of this stuff on the server database. Could a Proxy Site be used to fill forms and show the user what is about to be submitted, and would this require a browser plugin? A side benifit might be that it'd be like surfing through hiding your real location while allowing automated purchase and password service.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]