1 fusionforge-plugin-authwebid
2 -----------------------------
4 This is meant to be the external WebID authentication plugin for FusionForge.
6 It allows the forge to delegate authentication to a third party WebID "Identity Provider"
7 which will check the validity of the WebID profile of the user (checking that
8 the SSL cert used to access the IdP is the same as the one mentioned in the
9 FOAF profile it points to).
10 That IdP must be trusted by the forge administrators to do so, of course.
12 If the plugin is activated by a user in its account management page, then
13 he/she may login to FusionForge using WebID (provided that the plugin is
14 activated on the whole site/forge, of course).
16 Any number of WebID identities (URLs) can be used by a forge user to authenticate.
18 Only one user may use one particular WebID identity simultaneously.
20 WebID identities must have been added through the account management's WebID tab,
21 and are associated to the user, provided he/she owns them (i.e. can successfully
22 log-in to these URLs).
24 The logged-in session is granted full privileges of the user, for now.
25 This should be improved in a later version, as WebID may not be trusted for critical
26 operations on the forge.
28 The code depends on the WebIDDelegatedAuth library : https://github.com/WebIDauth/WebIDDelegatedAuth (a scaled down version of libAuthentication).
30 This plugin's code is distributed under the conditions of the GNU GPL v2+ license.
33 USE IT AT YOUR OWN RISKS : THIS IS JUST A VERY EARLY PLUGIN, AND NO SECURITY AUDIT WAS CONDUCTED !