科技回声

A team of developers and myself are designing a web application and I am in charge of user authentication. I want to provide options such as Facebook Connect and OpenID via Google, Yahoo, etc., but we also need our own authentication method if no one wants to use either of those options. I really really want to avoid password authentication, but if I have to I will do it. Do you think SRP would be a better option, or is there something I am overlooking that would be easier for the user? Thanks

Maybe let someone else worry about it?<p><a href="http://www.mozilla.org/en-US/persona/" rel="nofollow">http://www.mozilla.org/en-US/persona/</a> <a href="http://janrain.com/" rel="nofollow">http://janrain.com/</a>

Take a look at Windows Azure Mobile Services <a href="http://www.windowsazure.com/en-us/develop/mobile/tutorials/get-started-with-users-html/" rel="nofollow">http://www.windowsazure.com/en-us/develop/mobile/tutorials/g...</a>

You didn't mention a platform, but if you're using Python or Django, Python-Social-Auth[1] is quite good. It supports a bevy of third-party providers while still allowing for easy local (username/password or email/password) login types as well.<p>[1] - <a href="https://github.com/omab/python-social-auth" rel="nofollow">https://github.com/omab/python-social-auth</a>

Ask HN: Best way to do user authentication for web application?

3 条评论

Ask HN: Best way to do user authentication for web application?

3 条评论