Allow users to login with client certificates instead of a password
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
| Libravatar |
Wishlist
|
Unassigned |
Bug Description
Instead of supplying a password, users should be able to identify themselves to the main application using a client SSL certificate.
We can assume that they have generated their certificate already and that we don't need to do it for them.
There is some general documentation on client certs here: https:/
François Marier (fmarier) wrote : | #1 |
François Marier (fmarier) wrote : | #2 |
This may also be useful: http://
François Marier (fmarier) wrote : | #3 |
There used to be a Django auth plugin for this:
http://
but it seems to be gone. It's still listed here though:
http://
description: | updated |
François Marier (fmarier) wrote : | #4 |
The Koha implementation might be useful too:
http://
François Marier (fmarier) wrote : | #5 |
This would be especially useful now that Debian SSO uses client certs:
https:/
Relevant upstream bug: http:// code.djangoproj ect.com/ ticket/ 5771