Feature #35755
Drop OpenID support
| Status: | New | Start date: | ||
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: | - | % Done: | 0% | |
| Category: | OpenID | |||
| Target version: | - | |||
| Resolution: |
Description
Redmine currently supports OpenID authentication.
However, OpenId was obsoleted by OpenID Connect some years ago and most OpenID providers discontinued their services. Now it is very difficult to find a web service with an OpenID provider service. This means that it is difficult for Redmine users to start using OpenID login. And it is not easy for us to test if Redmine's OpenID support is working properly.
Given this situation, probably very few users are using OpenID login in Redmine. I think it is time to remove OpenID support from Redmine.
Related issues
History
#1
Updated by Mischa The Evil 3 months ago
Go MAEDA wrote:
However, OpenId was obsoleted by OpenID Connect some years ago [...]
I hadn't noticed that change.
Go MAEDA wrote:
[...] And it is not easy for us to test if Redmine's OpenID support is working properly.
Well, AFAIK it isn't working OOTB properly at least. And that already for 10(+) years. See #3780, #5966, #11778 and the 'OpenID Fix' plugin by Andriy Lesyuk.
Go MAEDA wrote:
[...] I think it is time to remove OpenID support from Redmine.
I agree. +1. And I think that JPL would wholeheartedly agree too (given the thoughts he expressed at the time in #699#note-14)...
#2
Updated by Holger Just 2 months ago
- Related to Defect #35688: OpenIdAuthentication alias_method_chain added
#3
Updated by Go MAEDA about 1 month ago
Here is a patch to drop OpenID.
#4
Updated by Go MAEDA about 1 month ago
- Related to Defect #32293: Redmine does not start if optional openid gems are not installed added