From mboxrd@z Thu Jan 1 00:00:00 1970 Authentication-Results: mail.toke.dk; spf=pass (mailfrom) smtp.mailfrom=irif.fr (client-ip=2001:660:3301:8000::1:2; helo=korolev.univ-paris7.fr; envelope-from=jch@irif.fr; receiver=) Authentication-Results: mail.toke.dk; dkim=pass (2048-bit key; unprotected) header.d=irif.fr header.i=@irif.fr header.a=rsa-sha256 header.s=dkim-irif header.b=W7BkFvXI Received: from korolev.univ-paris7.fr (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]) by mail.toke.dk (Postfix) with ESMTPS id B4B61991EBB for ; Wed, 3 Aug 2022 14:25:48 +0200 (CEST) Received: from mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [81.194.30.253]) by korolev.univ-paris7.fr (8.14.4/8.14.4/relay1/82085) with ESMTP id 273CPmsP020778; Wed, 3 Aug 2022 14:25:48 +0200 Received: from mailhub.math.univ-paris-diderot.fr (localhost [127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTP id 9215BAF25A; Wed, 3 Aug 2022 14:25:48 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=irif.fr; h= content-type:content-type:mime-version:user-agent:references :in-reply-to:subject:subject:from:from:message-id:date:date :received:received; s=dkim-irif; t=1659529547; x=1660393548; bh= ynz0dn7zzC93bHe3fKKpc5DgbCsV+C/hOEuRY7OUXe0=; b=W7BkFvXIvZhuv6RT 6agg/6dWYz2W+2jKiq/CN0caow2FfKmavFXTh05LvSaZV6m2SpcCVv+atO3rZzCD Z6hcmMrsHZNbL2TXuQrA/Y6JD2vHtOuyGjqKWK9QQhG6zdzrPto7dwaL88Immd2q +5N7jIA+Tej6HYPPX2SI6hteYc3XnzycN9dr4wZBiRgC8thChasAc9Tmu6u4dSTF duuUFXkyr1O+ekr7igt3oRw3eg3GXR3uY+7mYCa+zuBFGUEZcVelmUFy3g70zsmt aEi2dUYojslV39b2eiA7SowCNRGyPYXj5h70LX1IYe1UmUk8Sa73sxGWTQiHdHej 7Csg6Q== X-Virus-Scanned: amavisd-new at math.univ-paris-diderot.fr Received: from mailhub.math.univ-paris-diderot.fr ([127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [127.0.0.1]) (amavisd-new, port 10023) with ESMTP id i4p3WDo7S_z8; Wed, 3 Aug 2022 14:25:47 +0200 (CEST) Received: from pirx.irif.fr (unknown [78.194.40.74]) (Authenticated sender: jch) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTPSA id 70AF5AF258; Wed, 3 Aug 2022 14:25:47 +0200 (CEST) Date: Wed, 03 Aug 2022 14:25:47 +0200 Message-ID: <871qtxbjjo.wl-jch@irif.fr> From: Juliusz Chroboczek To: Michael =?ISO-8859-1?Q?Str=F6der?= In-Reply-To: <60bd0693-51c5-a0ff-7469-80b0fa2aeea4@stroeder.com> References: <878ro5bqpf.wl-jch@irif.fr> <875yj9boxg.wl-jch@irif.fr> <60bd0693-51c5-a0ff-7469-80b0fa2aeea4@stroeder.com> User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/27.1 Mule/6.0 MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue") Content-Type: text/plain; charset=US-ASCII X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (korolev.univ-paris7.fr [194.254.61.138]); Wed, 03 Aug 2022 14:25:48 +0200 (CEST) X-Miltered: at korolev with ID 62EA694C.002 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)! X-j-chkmail-Enveloppe: 62EA694C.002 from mailhub.math.univ-paris-diderot.fr/mailhub.math.univ-paris-diderot.fr/null/mailhub.math.univ-paris-diderot.fr/ X-j-chkmail-Score: MSGID : 62EA694C.002 on korolev.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000 X-j-chkmail-Status: Ham Message-ID-Hash: WOLJXMIW5HJ4HR2MFXN7LNGC2ZLQNBGO X-Message-ID-Hash: WOLJXMIW5HJ4HR2MFXN7LNGC2ZLQNBGO X-MailFrom: jch@irif.fr X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header CC: galene@lists.galene.org X-Mailman-Version: 3.3.5 Precedence: list Subject: [Galene] Re: Experimental LDAP integration for Galene List-Id: =?utf-8?q?Gal=C3=A8ne_videoconferencing_server_discussion_list?= Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: >> I am in touch with at least two groups of users interested in LDAP >> integration (yunohost.org and crans.org). > I'm pretty sure the above potential LDAP-integration users would also be > more than satisfied with a solution where they host an OpenID Connect > Provider (OP) in front of their LDAP server. Quite possibly, you'd need to speak to them. The nice thing about delegating authorisation to an external daemon is that these decisions need not be made in Galene itself, they belong in the authorisation server. I'd be thrilled if somebody decided to write an authorisation server for Galene that speaks OpenID Connect. -- Juliusz