X-Git-Url: https://git-public.kairo.at/?a=blobdiff_plain;f=fosdem2017%2Findex.html;h=8530779c3b6742e7f4603005cbcb81452e30d4d0;hb=ba0b35334ed09adad2d69d8588774fe25d732e55;hp=b6421cd1e2127c65aff6709f03374320fa873ea2;hpb=1380deda08aa804bfe5354d1c700a7bcddf1c3ee;p=slides.git
diff --git a/fosdem2017/index.html b/fosdem2017/index.html
index b6421cd..8530779 100755
--- a/fosdem2017/index.html
+++ b/fosdem2017/index.html
@@ -42,16 +42,16 @@
Robert Kaiser,
"KaiRo" <kairo@kairo.at>
-
Mozilla Rep
+
Mozilla Rep, Website developer & Project Manager
-What iswas Persona?
+What iswas Persona?
-
Login/Identity solution by Mozilla, 2011-2016
+
Login/Identity solution by Mozilla, 2011-2016
- Decentralized / Federated (with Fallback)
- Multiple identities
@@ -81,7 +81,7 @@
- Permission-less
See
-blog post by François Marier
+blog post by François Marier (feeding.cloud.geek.nz)
@@ -91,11 +91,11 @@ blog post by François Marier
- - Easy to implement
- - Trusted identification
- - Avoid dealing with how to secure passwords
- - No lock-in (identification via email?)
- - Privacy (not telling every login attempt to a big company)
+ - Easy to implement
+ - Trusted identification
+ - Avoid dealing with how to secure passwords
+ - No lock-in (identification via email?)
+ - Privacy (not telling every login attempt to a big company)
@@ -106,9 +106,9 @@ blog post by François Marier
- - Local: Need to secure passwords
- Local: Sounds easy to implement, complications in details
- Local: Can always be trusted
+ - Local: Need to secure passwords
- External: Potential for lock-in
- External: Potential privacy issues
- External: Implementation difficulty depends on API
@@ -125,8 +125,8 @@ blog post by François Marier
Mozilla Persona
Firefox Accounts
- Facebook, Google, GitHub, ...
- - Other OAuth2 providers
- - OpenID Connect (OIDC) providers (based on OAuth2)
+ - Other OAuth2 providers
+ - OpenID Connect (OIDC) providers (based on OAuth2)
- Other/older providers/standards (OAuth1, ...)
- Intermediates, e.g. Auth0
@@ -171,9 +171,9 @@ blog post by François Marier
- - OAuth2 API (potential extension to OIDC later), using oauth2-server-php
- - Password storage with password_hash (currently bcrypt) + nonce, auto-upgrade on login
- - Relatively easy to install on Linux with Apache + PHP5/PHP7 + MySQL (Other DBs should be easy to support)
+ - OAuth2 API (potential extension to OIDC later), using oauth2-server-php
+ - Password storage with password_hash (currently bcrypt) + nonce, auto-upgrade on login
+ - Relatively easy to install on "LAMP" (Linux with Apache + MySQL + PHP5/PHP7)
- Doctrine DBAL for DB abstraction,
php-utility-classes for email and DOM document abstraction
- Skinnable to brand installation to fit operator
@@ -187,11 +187,12 @@ blog post by François Marier
- - Only Authorization Code flow supported right now, oauth2-server-php can do Client Credentials as well as OIDC, should not be too hard to add.
- - Tested with Apache and MySQL for now, other web and DB servers should be possible easily.
- - Rudimentary documentation exists in the main README.
+ - Only Authorization Code flow supported right now, oauth2-server-php can do Client Credentials as well as OIDC, should not be too hard to add.
+ - Tested with Apache and MySQL for now, other web and DB servers should be possible easily.
+ - Rudimentary documentation exists in the main README.
- Languages supported are US English (default) and German, detected via Accept-Language sent by browser.
- Testing is done by running logins with KaiRo's websites (2 different client implementations).
+ - Special Thanks to Christoph Zauner for doing a review that didn't find any actual security issues (but some minor comments).
- Open Source at github.com/KaiRo-at/authserver, under MPL2 - released TODAY!
@@ -203,24 +204,23 @@ blog post by François Marier
- - Implementation of OIDC and perhaps Client Credentials flows.
- - Setting up a test suite and infrastructure.
- - Writing more complete documentation.
- - More languages?
+ - Implementation of OIDC and perhaps Client Credentials flows.
+ - Setting up a test suite and infrastructure.
+ - Writing more complete documentation.
+ - More UI languages?
- More installations?
- - Your ideas and pull requests!
+ - Your ideas and pull requests!
-
-
Questions?
-
-
+
+
Questions?
+
+
+