Skip to content

Latest commit

 

History

History
42 lines (34 loc) · 1.68 KB

20240326-minutes.md

File metadata and controls

42 lines (34 loc) · 1.68 KB

Authentication Working Group Minutes

Tuesday, 2024/03/26

10:00 am ET

Attendees:

Terrell Russell, Kory Draughn, Alan King, Martin Flores, Claudio Cacciari (SURF)

Minutes

SUMMARY:

DISCUSSION

  • OIDC/OAuth2 in HTTP API
    • Released v0.3.0, March 15, 2024
      • Protected Resource mode
      • Confidential Client mode
      • Alternate User Mapping
    • https://github.com/irods/irods_client_http_api/releases/tag/0.3.0
    • Interested in community feedback about which mode is used
      • Could consider removing one of them
    • Claudio - SURF has clients/wrappers using PRC to talk to iRODS directly
      • Could see HTTP API as a replacement where it makes sense
  • pam_interactive
    • Investigating adding tests for a possible release
    • pam_python requires python2 - has not been updated since 2020
      • Will require a different approach for automated testing.
    • Tried configuring PAM as described in the docs, like one would for pam_password
    • Enabling/disabling SSL in the plugin is not working
    • This can be avoided by just using SSL all the time / manually but the plugin needs to enforce this before we release
    • Or we just yell loudly to the admin that the system is not SSL-enabled
    • Default is SSL - active option to disable SSL
    • irods/irods_auth_plugin_pam_interactive#16
  • Next Meeting
    • April 2024