Opsview Single Sign-On coming soon
People have been asking on the list to be able to use the Single Sign-On feature implemented in Opsview to authenticate against an LDAP, for example.
I've been trying to get it working with the actual codebase, but I'm sad to say that it's not ready yet. While looking through the code, I found a comment that resolved my doubts:
# This setting of the user_exists means that Opsview is the central # login point, not the authticket # Maybe possible in future to allow a trust from the external source # so the user can be given from the auth ticketI love code comments that really help you see the decisions that were made (those are good code comments), although this one was a bit of a show stopper :(
So... the actual codebase can't trust a ticket generated from a 3rd party source. You CAN use the ticket generated by opsview to authenticate on other sources, though, as it's fully valid.
I've contributed changes to Opsview that are awaiting revision. These changes let the Catalyst framework (that Opsview uses) log in the user that is provided through a 3rd party ticket, so if everything goes well, I will be able to show you how to use the Single Sign-On to autheticate Opsview users for the next Opsview release (the article is half-written ;))