Lasso is a GPLed implementation of the Liberty Alliance single sign-on protocols. I’ve been thinking about single sign-on at work, both for internal services (where we already have a login that could be used as the single sign-on: the Windows login) and for external services (where we do not). Is this what Project Liberty does? Can I use it for this? That would be pretty alarmingly cool. And Free Software, to boot, yay!
At work, and this won’t suprise you, we have many single sign ons :)
Posted by Paul Freeman on December 2nd, 2004.
I’m one of the Lasso developers; really pleased to read about it here.
The Liberty specs only talk about HTTP services. Typically you’ll get an identity provider (IDP) and several service providers (SP) (you may want to look at the schema ).
As for using the Windows login, this could be possible with an IDP supporting NTLM authentication. None exists yet but this is a good idea :)
Posted by Frederic Peters on December 2nd, 2004.