Uploaded image for project: 'OpenOLAT'
  1. OpenOLAT
  2. OO-595

Shiboleth authentication module for REST API authentication

    XMLWordPrintable

    Details

      Description

      The REST API can only be used with local OpenOLAT passwords. But when in a Shibboleth environment, the REST API must also be usable, e.g. for the mobile client. The goal is to implement an infrastructure which can be used to authenticate the REST API via Shibboleth.

      One approach could be to use the Shibboleth authentication to generate a temporary OpenOLAT password. This must be cluster save. The shibboleth authentication then returns the temporary password together with the user name which in turn can be used to initiate a standard REST session. The REST auth service might be adapted to accept a temppassword parameter besides the normal password parameter if that simplifies things.

        Attachments

          Activity

            People

            Assignee:
            srosse Stéphane Rossé
            Reporter:
            gnaegi Florian Gnägi
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 1 day, 7 hours, 30 minutes
                1d 7h 30m
                Remaining:
                0m
                Logged:
                Time Not Required
                1m