[sugar] XO identity shared via Browse
Yamandu Ploskonka
yamaplos at bolinux.org
Tue Dec 2 16:32:40 EST 2008
what about
have the client send an Authorization header, in the Browse HTTP request.
This is part of standard HTTP request/response
http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.8
One problem that those who see the complicated future is that this
exchange will only be validated with a "home" server, would be hard to
have the XO manifest itself to other servers.
Also, re:spoofing, there would need to be an update of the data being
sent, maybe changes with the clock, daily? Don't know how to keep the
algorythm secure and still have this Open.
Sebastian Silva wrote:
> Can we please consider making this OpenID? It would really help to
> integrate everything. I made a proposal about it some time ago, and
> currently SugarLabs wiki has OpenID, which by the way, is a great.
>
> Sebastian
>
> 2008/12/2 Greg Smith <gregsmitholpc at gmail.com>:
>
>> Hi Tomeu and Browse engineers,
>>
>> Talking with Martin L recently he mentioned that you have some ideas on
>> how the XO can communicate its identity (e.g. serial # and maybe user
>> name) with a web server. We're mostly thinking of the school server as
>> the server side but a more generic solution may be acceptable.
>>
>> The main idea is to eliminate the need for students to ever type in a
>> user name and password. e.g. they should be able to just hit the Backup
>> and Restore URL and see their files without having to login or find
>> their serial number in a list.
>>
>> That's one example. I would also like any Web server to be able to
>> extract the XO identity and use it in CGI (e.g. PHP) for processing.
>>
>> It should also be encrypted so that the XO cannot be spoofed. e.g. only
>> the XO which backed up and can see or restore its own files (possibly
>> with an admin override).
>>
>> I put a stub of a requirement for it on our roadmap here:
>> http://wiki.laptop.org/go/Feature_roadmap#Single_Sign_on_from_Browse
>>
>> Do you have any ideas or designs for how we can achieve that?
>>
>> Comments and questions welcome.
>>
>> Thanks,
>>
>> Greg S
>>
>> _______________________________________________
>> Sugar mailing list
>> Sugar at lists.laptop.org
>> http://lists.laptop.org/listinfo/sugar
>>
>>
>
>
>
>
More information about the Sugar
mailing list