Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

What is the self-hosted equivalent of this ? I have been struggling with this problem quite a bit.

I have a bunch of web apps which are quite a bit different - off the shelf forum software, wordpress, custom code, etc. - and I want to tie them all together using a single signon. What should I be using ? I distrust myself enough to know that I would prefer not rolling my own security protocol.

I know that there are solutions like Kerberos, etc. but is it really practical for a bunch of websites running on Rackspace + EC2 ?



Which pieces do you care about being self-hosted?

If you use Persona on all your sites, it feels very much like SSO.

I use the browserid plugin (http://wordpress.org/extend/plugins/browserid/) on my personal Wordpress site.

We actually had an SSO project based on CAS v2, which we killed because Persona was a better solution.


I agree about the Persona bit, but many times you are not ... shall we say "allowed" to.

Since you built an SSO, could you point me in the right direction amongst self-hosted solutions. Some comparisons and pitfalls would be most welcome.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: