From Koha Wiki

Contents 1 Alternative OPAC logins 1.1 Description 1.2 Technical alternatives 1.2.1 OAuth 1.2.2 OpenID 1.2.3 WedID 1.3 Connecting external credentials to an actual/physical borrower 1.4 Inspiration

Alternative OPAC logins

Sponsored by and developed by , expected for/deadline: '

See also Bug .

Work in progress:

Description

Could it be possible to let patrons login to the OPAC with other credentials than the Username/password provided by Koha itself? OAuth and OpenID look like obvious candidates - what are their pros and cons, and are there other/better alternatives?

This is more of an attempt at getting a little brainstorming going, rather than the description of any specific plans for a new development.

The problem: Patrons probably have too many usernames/passwords already, resulting in them forgetting them and/or re-using credentials from other sites, resulting in reduced security. Could we let users use credentials from outside Koha to log in?

Creating a website that uses OAuth/OpenID/etc for logging in is probably not rocket science. An added challenge for Koha will be connecting external credentials to an actual/physical borrower.

Technical alternatives

OAuth

• OAuth Community Site
  • Code: The Code page mentions Net::OAuth

OpenID

• Bug 3237 - OpenID patron authentication
• OpenID Foundation website
  • Get an OpenID - list of OpenID providers
  • Code: Perl libraries

WedID

• WebIDs and the WebID Protocol
  • FOAF+SSL

Connecting external credentials to an actual/physical borrower

How do we know that a user logging in with /OpenID/OAuth/etc should be given access to any given account in Koha? Do they have to turn up at the library and tell us their OpenID? Are there other ways?

Inspiration

• Thomas Brevik: The library card is a barrier to library use