mnm icon indicating copy to clipboard operation
mnm copied to clipboard
verified publisher icon networkimprov

Authentication by third parties on registration & login

Open networkimprov opened this issue 4 years ago • 4 comments

A publicly accessible mnm site needs ways to identify & authenticate people registering new accounts. Possibilities include:

  • HumanID https://human-id.org
  • Twitter (etc) verified accounts
  • Designated OpenID Connect providers

A private mnm site needs ways to limit registrations & (often) logins to specific people or groups. Possibilities:

  • LDAP
  • Kerberos

A mnm site shall be able to require authentication on registration & login, or only registration. Private sites would typically require both; public sites would not (as that means a third-party action can deny someone access to email).

networkimprov avatar May 25 '21 06:05 networkimprov

The initial OpenID Connect implementation is in 4aa2b88a.

See docs under https://github.com/networkimprov/mnm#configuration.

networkimprov avatar Jul 08 '21 17:07 networkimprov

Hi networkimprov.

A mnm site shall be able to require authentication on registration & login, or only registration. Private sites would typically require both; public sites would not (as that means a third-party action can deny someone access to email).

Would it be possible to use oauth for authentication in tmtp?

ghost avatar Jan 15 '23 09:01 ghost

Please see commit mentioned above re OpenID Connect, which is oauth2 based.

networkimprov avatar Jan 15 '23 12:01 networkimprov

Hi networkimprov.

Please see commit mentioned above re OpenID Connect, which is oauth2 based.

thank you for feedback here.

ghost avatar Jan 15 '23 15:01 ghost