[Opensim-dev] User Authentication

Wed Feb 25 16:24:50 UTC 2009

I think this would be great!
Having this meta-tool will allow us to move one level up from the 
current explicit client binding, making the LL Viewer (or any other of 
the kind) one component among many others, while the main control of the 
client side moves up... for us to experiment with. I don't see any 
obstacle to making this meta-tool work for all platforms.
+1000.

Crista

Stefan Andersson wrote:
> Melanie,
>  
> I wasn't suggesting the use of our client software, I was describing a 
> solution that has worked well for us. I believe that there are some 
> issues that simply can't be solved with an unhacked sl viewer, and 
> this would be a nice base to work around it.
>
> I actually forgot to add that it also offers to download the viewer 
> and install it, if it can't find any viewer present.
>  
> Even so, given how small piece of code this launcher is, it would be 
> trivial to port to any environment.
>  
> I guess I'm really suggesting that if any of this would make sense, we 
> would set up a forge project for a cross-platform viewer launcher 
> project, bsd licensed so it can be applied and repackaged as needed. 
> We would gladly contribute to such a project.
>
> Best regards,
> Stefan Andersson
> Tribal Media AB
>
> > Date: Wed, 25 Feb 2009 08:13:48 +0000
> > From: melanie at t-data.com
> > To: opensim-dev at lists.berlios.de
> > Subject: Re: [Opensim-dev] User Authentication
> >
> > Hi,
> >
> > extra Client-Software may work well for Tribal, but who would want
> > to maintain Windows, Linux and Mac versions of this?
> > I believe Tribal's launcher is Windows only, that makes it somewhat
> > easier, but seeing that many devs are on Linux, locking out all
> > Linuxers like myself seems counterproductive.
> >
> > Melanie
> >
> > Stefan Andersson wrote:
> > > Dear colleagues;
> > >
> > >
> > >
> > > for some time now, we at Tribal Media have employed an entirely 
> different way of logging the viewer in, with tokens, that does not 
> constitute changing the viewer.
> > >
> > >
> > >
> > > What we do, is that we install a 'launcher' app on the users 
> computer. It serves a number of purposes:
> > >
> > >
> > >
> > > 1) Installs rezzme, genesis and osurl url monikers, all of them 
> taking tokens as auxiliary data - these monikers let people log onto 
> web sites, and launch a viewer with a pre-authenticated token by a 
> link. (see step 5)
> > >
> > >
> > >
> > > 2) Identifies installed viewers, and keep track of preferreed viewer.
> > >
> > >
> > >
> > > 3) Provides a pre-login login form to do non-web pre-launch 
> authentication (in this case, this would probably be where the _form_ 
> obtains the token to pass to step 5)
> > >
> > >
> > >
> > > 4) Launches pre-requisite software, as the TribalVoice.exe for 
> when voice should be enabled, or a Proxy to divert certain packets.
> > >
> > >
> > >
> > > 5) Launched preferred user, with seamless login (using the login 
> option of the ll viewer with dummy data to bypass the login screen) 
> supplying the TOKEN in a tweaked LOGINURI - an example of this 
> loginuri would be -loginuri http://{loginserver}/?token={token} - have 
> a look at the login service, it has been providing overloads and aux 
> data for some time now, just to be able to do this.
> > >
> > >
> > >
> > > 6) Provides for hypergrid cross-login by providing both loginuri 
> and target region as endpoint.
> > >
> > >
> > > While we might not want to provide all these options in OpenSim, I 
> think our approach has worked well for us and our clients.
> > >
> > >
> > > Most of the code for these options are actually already out there 
> in various scattered projects.
> > >
> > >
> > > Best regards,
> > > Stefan Andersson
> > > Tribal Media AB
> > >
> > >
> > >
> > >
> > >
> > >
> > > Date: Mon, 23 Feb 2009 14:31:25 -0800
> > > From: diva at metaverseink.com
> > > To: opensim-dev at lists.berlios.de
> > > Subject: Re: [Opensim-dev] User Authentication
> > >
> > > Right. The constraint here, let's not forget, is that we want to 
> continue to reuse the LL viewer for a while.
> > > I'm going to read that doc about OpenID tokens, but if it requires 
> participation from the viewer, forget it... We are and will continue 
> to be in LL Viewer hacking mode in the foreseeable future, abnd I want 
> to make things safe before a better viewer comes along.
> > >
> > > The bottom line question in my email, phrased in OpenID 
> terminology, is whether we can use the Viewer's IP address as the token.
> > >
> > >
> > > Tommi Laukkanen wrote:
> > >
> > > As we cannot change the viewer at the moment one could use the 
> opensim login code to create the token...
> > >
> > > regards,
> > > Tommi
> > > _______________________________________________
> > > Opensim-dev mailing list
> > > Opensim-dev at lists.berlios.de
> > > https://lists.berlios.de/mailman/listinfo/opensim-dev
> > >
> > >
> > >
> > >
> > > 
> ------------------------------------------------------------------------
> > >
> > > _______________________________________________
> > > Opensim-dev mailing list
> > > Opensim-dev at lists.berlios.de
> > > https://lists.berlios.de/mailman/listinfo/opensim-dev
> > _______________________________________________
> > Opensim-dev mailing list
> > Opensim-dev at lists.berlios.de
> > https://lists.berlios.de/mailman/listinfo/opensim-dev
> ------------------------------------------------------------------------
>
> _______________________________________________
> Opensim-dev mailing list
> Opensim-dev at lists.berlios.de
> https://lists.berlios.de/mailman/listinfo/opensim-dev
>   

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://opensimulator.org/pipermail/opensim-dev/attachments/20090225/a1e896fb/attachment-0001.html>