COmanage Users List

[Benn Oshrin <>]

On 7/27/15 5:47 AM, Pedro Severino wrote:

> Now I would like to let someone use COmanage without logging in with my
> IDP, but in a way that logging in would be required to start. I would
> like a user would fill a form that would require mail validation, admin
> approval, but this form would need to get a password introduced…
> 
> Is there any way to do this, with a plugin or something like that, or is
> something planned for this? This is mainly to something like an IDP of
> last resort…

Typically, such functionality is provided externally. This could be done
using a proprietary IdP of last resort, or using a social identity
providers (Google, etc). InCommon also recently had a working group on
this topic[1].

It actually wouldn't be too hard to add IdPoLR functionality to COmanage
(via a plugin, though you'd still need to operate an authentication
service like the Shib IdP). We've talked about this from time to
time[2], but haven't had a use case or resources to move forward with.
If you're interested in this, we could take this conversation offline or
to the dev list and discuss approaches and options.

Thanks,

-Benn-

[1] https://spaces.internet2.edu/x/QQApBQ
[2] https://spaces.internet2.edu/display/COmanage/IdP+of+Last+Resort