Re: Refactoring the Debtags web interface

To: debian-devel@lists.debian.org
Cc: debtags-devel@lists.alioth.debian.org
Subject: Re: Refactoring the Debtags web interface
From: Ben Finney <ben+debian@benfinney.id.au>
Date: Mon, 23 Feb 2009 11:00:06 +1100
Message-id: <[🔎] 877i3ija49.fsf@benfinney.id.au>
References: <[🔎] 20090222155649.GA1396@enricozini.org>

Enrico Zini <enrico@enricozini.org> writes:

> About authenticated access:
> 
>  - I do not want to maintain another user/password database: this
>  should be done with Openid

I heartily applaud this decision.

> and a whitelist of identity providers that every DD can easily use
> (like alioth or debian)

What of those that use an OpenID provider not on the whitelist? (I
imagine some not insignificant number of hackers run their own
personal OpenID server, so an ever-expanding whitelist seems not to
address the issue.)

What of non-DDs who do not necessarily have an account on any of those
services, but are still valid users for authenticating in the Debtags
system?

-- 
 \       “Free thought is a necessary, but not a sufficient, condition |
  `\                                       for democracy.” —Carl Sagan |
_o__)                                                                  |
Ben Finney

Reply to:

Follow-Ups:
- Re: Refactoring the Debtags web interface
  - From: Enrico Zini <enrico@enricozini.org>

References:
- Refactoring the Debtags web interface
  - From: Enrico Zini <enrico@enricozini.org>

Prev by Date: Re: ucf: Diversion of /u/b/ucf by etcgit
Next by Date: Re: Bug#516659: ITP: w3bfukk0r -- scan webservers for hidden directories (forced browsing)
Previous by thread: Re: Refactoring the Debtags web interface
Next by thread: Re: Refactoring the Debtags web interface
Index(es):
- Date
- Thread