Posted on 2020-06-12 by dsc
Wownero could use an identity and access management thing hosted on
login.wownero.com that serves as the central single-sign-on solution for all things related to logins.
Wownero currently has several services:
These work independently from eachother, meaning, they all have their own user database, own login logic, and they implement password recovery differently.
If someone creates a Wownero service that requires a login, he/she will need to host/implement user authentication himself. This is rather annoying for both the users and developers.
So I propose to use Keycloak as OAuth2 (OpenID) SSO system that any service can use (core, or third-party). The idea is that people can login with their credentials on
login.wownero.com and get redirected to the application/service in question. This is totally safu™.
Wownero is still in its infancy in terms of services so now might be the right time to provide a single-sign-on for the community before things get out of hand.
certbot-nginxfor certificate renewals
1 vCore / 2 GB Memory / 40 GB SSD NVMe)
10000 WOW (rounded to 10k just bcuz)
Alternatively, we could choose to use the dev fund for hosting costs.
I have experience hosting keycloak in production, etc etc