I would be very interested in a native SAML for single sign on implementation with Horizon login. This would mean Python rather than PHP along with potentially (I think) creating a situation where a user can use the Web GUI through single sign on but not able to use CLI.
Depending on the use cases, this may not be an issue but as far as I understand, it is a limitation of the technology at present. Tim From: Miller, Mark M (EB SW Cloud - R&D - Corvallis) [mailto:mark.m.mil...@hp.com] Sent: 06 August 2013 19:06 To: Rok Kralj; openstack@lists.openstack.org Subject: Re: [Openstack] Openstack login via SimpleSamlPHP (LDAP, OAuth, OpenID, etc..) How is this different than the new H-2 split backend functionality? From: Rok Kralj [mailto:o...@rok-kralj.net] Sent: Tuesday, August 06, 2013 5:38 AM To: openstack@lists.openstack.org <mailto:openstack@lists.openstack.org> Subject: [Openstack] Openstack login via SimpleSamlPHP (LDAP, OAuth, OpenID, etc..) As far as I know, the ability to log in to OpenStack via arbitrary Identity Provider (IdP) is a widely desired feature. Therefore, we have decided to integrate Keystone & Horizon with Simple Saml PHP, since it provides a lot of AUTH sources (aka. IdPs), for example LDAP, database, facebook, etc... Check out our effort in this short video (40s): http://www.youtube.com/watch?v=qmJAumoh4U8 For more, the instructions and a short introduction is available in the attached readme.pdf. Feedback is really appreciated.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
