[Koha-bugs] [Bug 30962] REST API: Add endpoint /patrons/:patron_id/check_password
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed Aug 10 03:48:31 CEST 2022
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=30962
--- Comment #13 from David Cook <dcook at prosentient.com.au> ---
While I originally created this to support a Keycloak User Storage SPI
extension, I've had libraries interested in it as an alternative to the ILS-DI
API "AuthenticatePatron" verb.
It's essentially the 1 thing that the ILS-DI API can do that the REST API can't
do, which means that libraries use the ILS-DI API (or SIP2) to authenticate
patrons against the Koha database for third-parties software.
So it would be great to get this into Koha core, so that we can continue to
move away from the ILS-DI API.
--
We've actually had more and more libraries using Keycloak with the Koha user
storage extension, because it means they get to-purpose software for SSO, while
still getting to manage all their patrons in Koha. It's super useful.
(I also have a goal of Koha using Keycloak Oauth2 access tokens to bring SSO to
Koha's REST API, so that third-parties could call public API endpoints on
behalf of Koha users without third-parties needing dedicated API users with
staff-level permissions, which would be a massive improvement on security/trust
relationships, but one step at a time...)
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list