Problem with logging to community.kde.org
Ingo Malchow
imalchow at kde.org
Tue Mar 8 11:58:16 UTC 2016
Am Dienstag, 8. März 2016, 12:53:58 CET schrieb Pali Rohár:
> On Tuesday 08 March 2016 12:50:22 Ingo Malchow wrote:
> > Am Dienstag, 8. März 2016, 12:49:18 CET schrieb Pali Rohár:
> > > On Tuesday 08 March 2016 12:41:44 Ingo Malchow wrote:
> > > > Am Dienstag, 8. März 2016, 12:33:41 CET schrieb Pali Rohár:
> > > > > On Tuesday 08 March 2016 11:26:21 Ingo Malchow wrote:
> > > > > > Am Dienstag, 8. März 2016, 11:15:48 CET schrieb Pali Rohár:
> > > > > > > On Tuesday 08 March 2016 10:37:30 Ingo Malchow wrote:
> > > > > > > > Hi Pali,
> > > > > > > >
> > > > > > > > openid was disabled and as such your user account has no
> > > > > > > > password
> > > > > > > > assigned.
> > > > > > > > That is the reason why your login does not work.
> > > > > > > > You have 2 options: Either you login with phabricator, set up
> > > > > > > > a
> > > > > > > > new
> > > > > > > > account
> > > > > > > > and ask me to merge this one with your former one.
> > > > > > > > Or you want me to set up a temporary password so you can link
> > > > > > > > your
> > > > > > > > old
> > > > > > > > account and change the password afterwards.
> > > > > > >
> > > > > > > So, there is kde identity account which is used for logging into
> > > > > > > phabricator. Which means that identity password is used also for
> > > > > > > phabricator. But for wiki is needed another new account+password
> > > > > > > and
> > > > > > > cannot be reused either one from kde identity nor from
> > > > > > > phabricator?
> > > > > > >
> > > > > > > I thought that some SSO mechanism (e.g. identity.kde.org) is
> > > > > > > used
> > > > > > > also
> > > > > > > for wiki and I tried somehow logging into it...
> > > > > > >
> > > > > > > So if I need separate account + password for wiki, can you reset
> > > > > > > password for that my existing account Pali?
> > > > > >
> > > > > > This is indeed the case, there is no need for another password in
> > > > > > normal
> > > > > > case. But to keep old accounts we need to ensure they can be used.
> > > > > > Passwords are not shared via ldap (identity). And Openid or OAuth
> > > > > > does
> > > > > > neither. All it does is offer a central login with which you can
> > > > > > authenticate against other sites. The drawback is, once you offer
> > > > > > a
> > > > > > new
> > > > > > login, you need to find workarounds. Like in your case ;)
> > > > > > However, i will set a temporay password on your account, and mail
> > > > > > it
> > > > > > separately in private. And please change it soon after the login
> > > > > > finished.
> > > > > >
> > > > > > Regards,
> > > > >
> > > > > Logging working now fine... But I'm still confused. At second login
> > > > > it
> > > > > does not ask me for wiki password, why?
> > > >
> > > > The password was only needed for merging your old account with the new
> > > > login. Once that was done, phabricator can now handle it on its own.
> > > > Note, those issues only arise with former existing openid accounts.
> > > > Plain
> > > > mediawiki accounts already have a password and can easily be merged.
> > > > Same
> > > > for old identity logins.
> > >
> > > Ah... so we really use some SSO also for wiki. And now wiki authenticate
> > > me against phabricator account (which itself use identity kde), right?
> > >
> > > And wiki password is not used for anything now, right?
> >
> > Exactly :)
>
> Great! It was really hard to me to understand this situation...
>
> If wiki password for already converted accounts is not used anymore,
> then it should be deleted for security reasons.
Yes. And done.
--
Ingo Malchow
More information about the kde-www
mailing list