Re: Sunsetting sso.debian.org

To: debian-devel@lists.debian.org
Subject: Re: Sunsetting sso.debian.org
From: Bastian Blank <waldi@debian.org>
Date: Tue, 18 Oct 2022 11:38:52 +0200
Message-id: <[🔎] Y050LHCQhIMyf+bn@shell.thinkmo.de>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] d7d85f470ad33739c804869266e968be@ganneff.de>
References: <[🔎] 20221016172228.5rhbmdl6ogjfjqbo@enricozini.org> <[🔎] Y00jKUURSvu2FHf5@shell.thinkmo.de> <[🔎] CAKZYK4-D4fxcGSmMv=c0fATCa16W2FC5WekyEoeFj_cRFcw4NA@mail.gmail.com> <[🔎] tslczaqxyd4.fsf@suchdamage.org> <[🔎] 87h702z1ul.fsf@ganneff.de> <[🔎] 78da81abae64084142d87e041246812e7abae91a.camel@debian.org> <[🔎] d7d85f470ad33739c804869266e968be@ganneff.de>

On Tue, Oct 18, 2022 at 11:20:10AM +0200, Joerg Jaspert wrote:
> Am 2022-10-18 04:52, schrieb Paul Wise:
> > > Salsa should be there for git (related) things.
> > > NOT as an identity/login provider for Debian

Please formally retract the agreement that was forged two years ago
then.  I properly referenced it already.  Until then, it still is an
identity provider.

> No, it is a bad, not a good thing, to use Salsa for this.
> Salsa is a "repository service" with some added nice features related to
> them. It is good at that, yay. Fine.

No, it is much more then a repository system.

> Salsa is really bad as an identity/authentication service. Having a salsa
> account does NOT mean ANYTHING related to Debian, like DM/DD/whatever.

It is an identity provider, yes.  It provides a fixed identity.
Further information are optional.  Where are they required?

>                                                                        And
> thats information that such a service ought to provide too.

This is the Debian LDAP.

>                                                             It also does not
> allow any kind of useful management of identities besides "the account is
> there/blocked/deleted". And so, as soon as you would want to NOT allow
> someone a login to a service that uses salsa as a login service - you need
> to delete their account. Including their repositories and abilities there.
> Not good.

When exactly do you want to do that and how would that work?

Bastian

-- 
Women are more easily and more deeply terrified ... generating more
sheer horror than the male of the species.
		-- Spock, "Wolf in the Fold", stardate 3615.4

Reply to:

References:
- Sunsetting sso.debian.org
  - From: Enrico Zini <enrico@enricozini.org>
- Re: Sunsetting sso.debian.org
  - From: Bastian Blank <waldi@debian.org>
- Re: Sunsetting sso.debian.org
  - From: Stephan Lachnit <stephanlachnit@debian.org>
- Re: Sunsetting sso.debian.org
  - From: Sam Hartman <hartmans@debian.org>
- Re: Sunsetting sso.debian.org
  - From: Joerg Jaspert <joerg@debian.org>
- Re: Sunsetting sso.debian.org
  - From: Paul Wise <pabs@debian.org>
- Re: Sunsetting sso.debian.org
  - From: Joerg Jaspert <joerg@ganneff.de>

Prev by Date: Bug#1021982: ITP: python-dbus-fast -- Faster version of Python dbus-next
Next by Date: Bug#1021993: ITP: swirc -- Curses ICB and IRC client
Previous by thread: Re: Sunsetting sso.debian.org
Next by thread: Re: Sunsetting sso.debian.org
Index(es):
- Date
- Thread