...
- Sakai filter to assert that request presents localhost / expected IP address as remote address .– Completed 10/21/05
- HTTP Basic authentication as a quick win that covers most of the need .– Completed 10/21/05
- HTTPS Client SSL certificate authentication as a possibility.
- WS-Security Username, Token profile
- Could present a traditional username, password pair that Sakai could authenticate as if a login
- Could present a username, CAS proxy ticket pair.
- How the "password" is validated should be easily replacable Sakai side; not the hard part.
- SAML using WS-Security SAML profile. Has nice features as an eventual solution, not realistic near them.
...