Return-Path: X-Original-To: apmail-cloudstack-users-archive@www.apache.org Delivered-To: apmail-cloudstack-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 7A5AA1089C for ; Tue, 4 Mar 2014 21:51:19 +0000 (UTC) Received: (qmail 90096 invoked by uid 500); 4 Mar 2014 21:51:16 -0000 Delivered-To: apmail-cloudstack-users-archive@cloudstack.apache.org Received: (qmail 89807 invoked by uid 500); 4 Mar 2014 21:51:15 -0000 Mailing-List: contact users-help@cloudstack.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@cloudstack.apache.org Delivered-To: mailing list users@cloudstack.apache.org Received: (qmail 89603 invoked by uid 99); 4 Mar 2014 21:51:15 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 04 Mar 2014 21:51:15 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy) Received: from [193.6.222.244] (HELO strudel.ki.iif.hu) (193.6.222.244) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 04 Mar 2014 21:51:07 +0000 Received: from cirkusz.lvs.iif.hu (cirkusz.lvs.iif.hu [193.225.14.182]) by strudel.ki.iif.hu (Postfix) with ESMTP id A7A67537; Tue, 4 Mar 2014 22:50:46 +0100 (CET) X-Virus-Scanned: Debian amavisd-new at cirkusz.lvs.iif.hu Received: from strudel.ki.iif.hu ([IPv6:::ffff:193.6.222.244]) by cirkusz.lvs.iif.hu (cirkusz.lvs.iif.hu [::ffff:193.225.14.72]) (amavisd-new, port 10024) with ESMTP id kSc9N0Avp923; Tue, 4 Mar 2014 22:50:35 +0100 (CET) Received: from [192.168.100.5] (business-188-142-209-229.business.broadband.hu [188.142.209.229]) by strudel.ki.iif.hu (Postfix) with ESMTPSA id 786D2519; Tue, 4 Mar 2014 22:50:35 +0100 (CET) Message-ID: <53164AAB.7010509@niif.hu> Date: Tue, 04 Mar 2014 22:50:35 +0100 From: =?UTF-8?B?RXJkxZFzaSBQw6l0ZXI=?= User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.3.0 MIME-Version: 1.0 To: users@cloudstack.apache.org, dev@cloudstack.apache.org Subject: Re: SSO References: <7C6EC4F4-C97C-4779-BCCC-1D8D93312864@um.es> In-Reply-To: <7C6EC4F4-C97C-4779-BCCC-1D8D93312864@um.es> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Checked: Checked by ClamAV on apache.org Hello! I recorded a jira feature request about this, but I make a workaround too - while sso would be implemented -, because I wanted to auth users with eduID. My solution is a php based register page, which can be opened (from main login page) after we had successfull login on idP. After that, the script split up the eppn, and check the domain part, and if it's not exist, make an api call, to add it. The first part of eppn will be the username, which registred by an api call, and the script generate a random password, which will be sent by email. If sb have account, they can also ask for a new password, and with some more api call, you can set up limits. I know, it's not SSO, but enough to me. :) Dear, Peter 014.03.04. 20:34 keltezéssel, María Noelia Gil írta: > Hello, I am studying the operation of single sign-on in CloudStack. Does anyone can provide me information about this topic? > > I want to know if you can use SAML, OpenID, ..., and as it should be. > > Thank you.