Would like higher security authentication to SSO
Bug #453131 reported by
Joe "Rotund" Tennies
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Canonical SSO provider |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
I use Launchpad as my main OpenID provider. I would like increased security in the form of one-time use keys. An example of this is eBay/PayPal (https:/
The SMS version eBay uses sounds good, but I'm concerned about needing a backdoor for the situation that you lose you cellphone/change phone numbers or providers. There's also the issue of the fact SMS is not a guaranteed service, so the key could be dropped if you are out of coverage (like in a basement at a conference). I wonder how eBay gets around these issues.
affects: | launchpad → launchpad-foundations |
Changed in launchpad-foundations: | |
status: | New → Triaged |
importance: | Undecided → Low |
tags: | added: wishlist |
affects: | launchpad-foundations → canonical-identity-provider |
summary: |
- Would like higher security authentication to launchpad + Would like higher security authentication to SSO |
To post a comment you must log in.
We're looking into a number of options to provide additional security for some cases, whether defined by a specific site or enabled by the user. This is not on our short-term roadmap but we are looking into it.