Loomio
Wed 12 Feb 2014 5:42PM

Diaspora* authenticate

DU nio Public Seen by 76

Hello guys, there is many usefull (IMO) things such as "Login with Facebook", "Login with Twitter" an some others.
Will diaspora have this feature?
I vote for it, this will be famous and it can be integrated for example there: http://everyauth.com/

After this many users can be logged on applications with own diaspora* account.

DU

nio Thu 13 Feb 2014 6:51PM

In all means the Persona and "Login with diaspora*" are two different things.
The real issue start with username:
I want login with [email protected] on any diaspora supported server not only one.
Then why don't add abbility login on other sites?
The site can choose by using and don't use this possibility.
The sites have choises.
I do many sites and I haven't on any facebook login, but on other site write me users, then want this feature and I add it there.
This is not only me personal problem, this can be very good abillity for many users.
Maybe the facebook can be changed to diaspora. I think this would be nice jump.

DU

Rich Fri 14 Feb 2014 3:51PM

To log in on any pod would require your user account details (and the millions(?) of other users account details) to be federated and stored on every single pod across the world. Most pods won’t have the spec to hold account details for that many users. But that detracts from the original topic.

I too would like to see “Log in via” type auth methods on D*. I’ve added these two auth methods to sites in the past (ASP.NET, not RoR) and I see no reason why they couldn’t be implemented on D* as you only need to store four values to confirm an identity:

Twitter User ID
Twitter Screen Name
OAuth Token
OAuth Secret

Same principal with Facebook, there’s a UID, First Name, Last Name, AccessToken.

Other questions need to be asked though, such as what return on investment would D* receive for implementing these alternative auth methods? Or how high/low in the development priority list would this feature request sit?

R

Ryuno-Ki Fri 14 Feb 2014 6:45PM

Can someone gather the API constraints of the mentioned log in techniques? This way, we can compare them.

For example, I could image, that Facebook tracks user with their login offer … (not proved).

DU

nio Sun 16 Feb 2014 3:32PM

@rich1 I agree with second point but not first one.
Why is needed stored all data on secondary pod?
When we say about decentralized system, the pods can communicate between each other.
I think the idea about decentralization is still there.
I really don't see any need to store duplicated data. Maybe when we say about CDN but this is other thema.