Comments (8)
Related to: #1745
from schulcloud-server.
Hi @Chaostheorie, I fully support this idea from the tech and the security side. We already tested some tings here. But: From a strategic side we suggested form the beginning of the project that the Schul/Cloud is used in conjunction with IDM systems provided by the federal states. And form the architectural part TOTP then belongs into the IDM layer. Still if someone would do a PR we will be happy to review and integrate.
from schulcloud-server.
@janrenz I totally agree with you: this belongs to the IDM layer and shouldn't be mixed in the business layer.
You can think about a solution based on keycloak.
from schulcloud-server.
@piwo1984 I'm sorry, if I'm asking a silly question, but where is your IDM-layer code located?
I'm new to the codebase and would love to help with this.
from schulcloud-server.
@Chaostheorie there isn't any code base. This is just an idea about a possible deployment architecture. As @janrenz mentioned this is out of scope of the Schul/Cloud project. But one can think about providing a lean deployment stack (docker-compose based) for others to get an instance of the SchulCloud up and running quickly.
from schulcloud-server.
Hi, the things we doing in a role as a IDM are in the Server Code. For states where we run with an external IDM, these IDMs are not part of this repo. Some use Univention products, some custom build stuff, some iserv.
For a local Docker based instance check: https://github.com/hpi-schul-cloud/docker-compose
For running at K8s you can check out the WIP branches like https://github.com/hpi-schul-cloud/schulcloud-server/tree/kubectls-experiments where we try to move the K8s specific stuff from an internal repo into the service repos.
from schulcloud-server.
@piwo1984 Are you sure this couldn't be integrated? AFAIK TOPT can be integrated without changing the environment too much.
Changes that would be required is an additional field for the Key in the identity manger (LDAP) and an additional field or dialog for the key in the login form. The input from this field can be checked by the server with the current time and the key.
@janrenz thank your pointing me to the repos. I will take a look at it later :)
from schulcloud-server.
@Chaostheorie I'm not aware of this "feature" of schulcloud-server
. I will have to inspect this first. But I'm in doubt that integration TOPT will be this simple. In case you add such a functionality you have to make sure to don't break anything else.
from schulcloud-server.
Related Issues (20)
- Dependabot couldn't authenticate with registry.npmjs.org
- Cannot add files to topics HOT 2
- Offering help/contribution HOT 1
- Bug removing users HOT 2
- Using HTTP/2 HOT 2
- LTI 1.3 available to the public HOT 1
- Can't join Video Conference HOT 2
- Kann keine Dateien hochladen, die größer als 2GB sind HOT 4
- kleinere bit rate HOT 1
- sharing .png files
- sharing .png files to other clients, more precisely students via course files
- Updates von Aufgaben (im Archiv) nicht sichtbar HOT 1
- engage community by publishing a roadmap and project milestones HOT 4
- [Bug] UI: Tasks are visible without authorization HOT 2
- Inefficient regular expression HOT 1
- Link to system architecture broken HOT 4
- Benachrichtigungen / Notifications HOT 1
- Run Local at Kubernetes HOT 1
- Reporting a vulnerability HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from schulcloud-server.