[Koha-bugs] [Bug 19886] Two Factor Authentication: Yubikey
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed Nov 27 02:38:33 CET 2019
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=19886
--- Comment #4 from David Cook <dcook at prosentient.com.au> ---
(In reply to Jon Knight from comment #1)
> Is this something that needs to be built into Koha, or is it better to make
> use of existing third party systems such as PrivacyIDEA
> (https://www.privacyidea.org/) that can be used in conjuction with normal
> SSO mechanisms? For example we (Loughborough University) have tested
> Yubikeys with PrivacyIDEA and simpleSAMLphp IdP and it works, and we already
> know that Koha can use the SAML2.0 authentication assertions from the IdP
> (as that's what we're doing in production with PTFS-E). PrivacyIDEA also
> can also support Google Authentication as suggested in Bug 19887.
I wonder about this as well. I'm fond of Keycloak for this purpose. It can use
SAML or OpenID Connect. I have a local OpenID Connect client I wrote for Koha,
and I've thought about using Keycloak in the test plan for when I finish the
patches for Bugzilla...
That said, adding support to Koha would make it easy for people to have more
secure out of the box implementations without needing more third party
software.
--
You are receiving this mail because:
You are the assignee for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list