Puppet » Puppet Forge

I <3 OpenID and having it would be a good fit for this site.

I’m reducing this to low priority because: 1. The current login works. 2. The app is uses the Devise authentication system, which does not provide a trivial way to add OpenID authentication. 3. Replacing Devise with another authentication system, like Authlogic, would take a day or two to do, which may not be the highest priority use of this much time.

Paul: Thank you for the honest feedback. I’ve gotten some more like this elsewhere too.

Michael (Product Manager): People keep saying they want OpenID and so would I, because it’s easy to use and will improve Forge adoption. Unfortunately, making it possible for people to login via OpenID or password will require 1-2 days of work. If you want to do this, how do you want to prioritize and schedule this work?

The work involved is: 1. Tear out the existing “Devise” authentication system, because no one’s been able to figure out how to add OpenID to it — and a number of people have tried over the last 6 months. 2. Add a new authentication system that supports the ability to login using either a password or OpenID, either using “Authlogic” or “restful-authentication”. 3. Convert all the code and data to support the new system, so that people with existing accounts and passwords can still login.

I have hybrid OpenID and username-password authentication working in development. Am putting the finishing touches on and hope to release this soon.

I don’t think this code is done yet, but it’s very close. I haven’t been had time to work on it for months and thus have no idea what’s left to do. At this point, it needs to be carefully reviewed to determine whether it’s really done or what else needs to be addressed.

Kelsey, we need someone to see if this code is even vaguely functional right now.

If not, we should just close this and deal with re-inventing auth later.