Reputation: 1317
How to setup Plone sites working only with OpenID
I have a Plone 4.1 site using the OpenId module. When a user clicks on login it opens the dialog to login using OpenId but also using classic login/password. I wan't a site using only OpenId. Is there an easy way to config a site to do this?
Upvotes: 1
Views: 315
Answers (1)
Reputation: 1132
You will need to disable the http basic auth:
- Go to the acl_users in your plone site via the Zope Management Interface.
- Click on 'plugins'. You should now see a list of Plugin Types (eg. Challenge Plugins, Extraction Plugins, etc).
- Click on Extraction Plugins.
- Deactivate normal plugins: Move all Active Plugins (potentially: credentials_cookie_auth, credentials_basic_auth) to "Available Plugins" so that only openid + session is left. You will need the to avoid that the user is challenged every request.
Now only OpenID should be the available authentication method. If you need the rest again, simply activate them in "Extraction Plugins".
Be aware that you need to have a fall back manager user in order to make further changes with elevated privileges. Either by being able to login via the Zope root, which I expect or by assigning yourself the System Administrator role to your own Open ID login. Otherwise you may lock yourself out.
Upvotes: 5
Related Questions
- Create a Plone private site
- Plone 4 newbie can't create a web site - no username/password
- How to manage a remote Plone site from my local Plone 5.0?
- users unable to login to Plone site
- Logging into Plone site with credentials passed through HTTP
- Creating third party API on a Plone site using OAuth2?
- Login with username and password in Plone
- Authentication from multi source in Plone 4?
- What is the best way to create a Plone private site
- Use Plone's authentication mechanism to login to other sites