Applying for an SBAY Web Account
This page has information about the SBAY Web Accounts, a web single sign-on (Web SSO) authentication system so you can log in once for all the web services hosted by SBAY. This is for the convenience of the volunteers who participate in more that one project or Special Interest Group (SIG).
How to get an SBAY Web Account
You can see these same instructions at our Single Sign-on (SSO) site, http://www.sso.sbay.org/
- Import the certificate for our Certification Authority to your browser so that it will recognize us. Generally, you should only accept such certificates from people or organizations you know. So if you don't know us, you're welcome to come meet us first.
- Sign up for an SBAY Web Account.
- Check your e-mail for the confirmation message, and click on the link in it.
- Administrators review and approve the requests - mainly we're looking to screen out spammers. Requests from anonymous e-mail providers are ignored and may be automatically rejected.
- Each site that uses these web accounts will present a login screen if you're not logged in. If you want, you can go first to the login screen at https://auth.sso.sbay.org/
- Use your SBAY SSO account to log in to any of the hosted web sites that you participate in, such as our various wiki sites.
How the SBAY Web Account system works
The accounts are stored in OpenLDAP
by the OpenLDAP Project.
The web single sign-on (Web SSO) is built on LemonLDAP::NG
by the OW2 Consortium.
The wiki sites use TWiki
by the TWiki Community.
Our registration system will be open-sourced. The source code repository needs to be configured to use this authentication. It also needs some installation documentation, to answer the obvious questions we'd get if we posted it without that.
Sites which use SBAY Web Accounts
SBAY Web Accounts are a single sign-on (SSO) system serving the systems listed below. Volunteers who participate in more than one project have the convenience that once logged in to any of these sites, there is no new login step required to access the others.
Future services to use this system
Additional services can use this authentication system as we bring them online.
- Bugzilla bug/incident tracking (web single sign-on)
- convert Mailman mail lists to Sympa (web single sign-on)
- Subversion source code repositories (same login account but not single sign-on)
- Jabber instant messaging (same login account but not single sign-on)
- Status.Net microblogging (web single sign-on)
- OpenMelody (formerly Movable Type Open Source) blogging (web single sign-on)
Additional features can be added for more usefulness and convenience...
- allow OpenID logins to be associated with existing accounts for simpler login
- allow OpenID to be used for account registration so that users don't have to remember another set of login and password
Topic revision: r8 - 2010-03-20 - IanKluft