Feature request: OpenID login support

Please add support for administrators and other users on TeamCity to use OpenID to login.  In fact, please make it possible to use only OpenID.
Since TeamCity (at least by default) is hosted by HTTP rather than HTTPS, I hardly want my password going in the clear.    

4 comments
Comment actions Permalink

If you authenticate via TeamCity login form, passwords are sent encrypted by RSA. Anyway feel free to submit a feature request for OpenID authentication to our tracker: http://www.jetbrains.net/tracker

Also this functionality can be implemented as a plugin to TeamCity.

0
Comment actions Permalink

I read over the authentication plugin architecture for TeamCity.  I don't think OpenID can be a plugin.  The plugin must take a username and password from TeamCity as that's the interface and return whether or not they are valid.  There's no room for an OpenID identifier, a redirect, and processing the response from the OpenID Provider in that.

0
Comment actions Permalink

You are right that existing API is not very suitable for such plugins. However I still think it is possible. Plugin can provide its own login form and do a redirect to open id provider, after that plugin can create or find user account, set it into the session and finally redirect to TeamCity index page.

0
Comment actions Permalink

Also there is lack of support of federated id. For example, if i have an federated ID provider, on every request should be done validation of this ID. It's not possible to do in current architecture. It's common lack for all legacy security systems, but everything changes and federated id is became a dominant in intranet sector.

0

Please sign in to leave a comment.