Jetendo CMS now supports login via Google, Yahoo and other OpenID providers
Have you ever been to a web site where you could login with your Google, Yahoo or another account?
This is done through a number of standards, but one of the most popular is OpenID. I just implemented OpenID 2.0 support into the Jetendo CMS user system.
At the moment, you still need to create a member account in the system, but then you can edit it. On the Advanced Options, there is now a section call "Sign In With".
Site Manager Edit Member Form Screenshot:
Once you connect your external account to your Jetendo CMS member profile, you can login to the Site Manager with your OpenID account OR your regular Jetendo CMS password.
New Site Manager login page screenshot
Jetendo CMS Support High Security OpenID Providers
In addition to that, you can enter in URLs for other OpenID providers. There are some really excellent alternatives out there to using a Google account. For example, www.startssl.com, offers a free certificate that can be used for signing email and OpenID authentication. Once configured, you can put the certificate on a smart card device and then you have a huge boost in security since now the attacker would need to have your smart card in order to gain access.
Google Accounts with 2-step authentication are more secure
Also consider that you can use 2-step authentication with your google account to achieve a similar level of security. Google's service can be configured to send you a one-time pin code with a voice call or an SMS text message (standard carrier charges apply, of course). Read more about google 2 step authentication here:
Symantec VIP - Excellent free OpenID provider for added security from a trusted brand
Symantec (who acquired Verisign) also offer a Personal Identify Portal service here which offers multi-factor authentication as well:
Convenience Features Included With This Update
If you use a custom OpenID provider with Jetendo CMS, the login page is setup to store a permanent cookie with the openid url that you enter in. So in future logins, it will take only 1 click to login if you've already authenticated with the external provider. Very convenient!
In addition to all this, as a developer, you have access to the Jetendo CMS Server Manager which allows you to create a global account which can login to all of the sites hosted on that Jetendo CMS installation. I've also created special code that allows a global URL to be accessed instead of the site URL when you login with OpenID. This means when you login to different sites throughout the day, they will be able to share the same login thanks to the global account. Usually, this wouldn't be possible because Google and others generate a unique ID for each domain you authenticate with. This is a great convenience feature that is only possible due of the great multi-tenant functionality provided by Jetendo CMS.
There is also an option to make OpenID authentication required. This will disable the normal email + password login and force the OpenID login as the only accepted authentication.
We may support other authentication options down the road as well such as Facebook Connect, adding security questions, Google Authenticator and more.
Bookmark & Share
Popular tags on this blogPerformance |
Most Popular Articles
- Mass virtual hosting security tip when using a reverse proxy to connect to other servers
- Solution for MariaDB Field 'xxx' doesn't have a default value
- How to lock Windows immediately upon smart card removal
- Stop using sleep mode with Windows Bitlocker for better security. Learn how to use hibernate in Windows 8.
- Planning a system to visually create responsive data-driven web page layouts & widgets in the Jetendo CMS browser interface
- Is Google Public DNS actually better then your ISP?
- Pros and Cons of CFML vs PHP and other languages
- Run Windows Guest in CentOS 6 Linux Host using Virtualbox 4 via the command line