=== chihchun_afk is now known as chihchun === JanC is now known as Guest52949 === JanC_ is now known as JanC === zoktar_ is now known as zoktar === chihchun is now known as chihchun_afk === Trevinho_ is now known as Trevinho === Mc__ is now known as Mc === daker_ is now known as daker === maclin1 is now known as maclin [19:12] Hint… https://help.launchpad.net/BadgeKit seems to be broken. [19:13] In other news… I'd like to add Ubuntu single-sign-on to screenshots.debian.net (aka screenshots.ubuntu.com) and I wonder if there is an SVG of the Launchpad logo or a ready "Login with Ubuntu Launchpad" logo. [19:14] Also I'd like to know whether SSO against Ubuntu One or Ubuntu Launchpad makes more sense. I'm a bit confused which of the two systems is recommended. [19:14] they are the same system [19:15] Oh, good, so I can use OAuth against the launchpad then. [19:15] OpenID is probably what you want [19:16] Recommended over oauth? [19:17] screenshots.debian.net runs on Ruby-on-Rails which uses the "omniauth" library. That's what the Ruby "omniauth-launchpad" module seems to use. And so far it works. [19:17] login.ubuntu.com (login.launchpad.net) doesn't do oauth [19:17] launchpad itself has oauth for talking to the launchpad api [19:18] OpenID is what all the other external sites that allow logging in via launchpad use (ie stackexchange, ubuntu forums, and such) [19:19] I think the module uses api.ubuntu.com according to https://github.com/joaopapereira/omniauth-launchpad/blob/master/lib/omniauth/strategies/launchpad.rb [19:20] If that's okay I'd leave it like that because it seems to be working. :) [19:20] that is using launchpad oauth ye [19:20] yes [19:21] Do you happen to know if there are fancy templates that help me create "Login with Launchpad" buttons? I have just taken the PNG logo from launchpad.net but perhaps there's a styleguide. [19:22] not afaik, no [19:23] but that's not exactly "log in with launchpad" either. it's more "grant access to your launchpad account to this site" (which is what oauth is for). openid is "log in with launchpad" [19:23] but eh [19:23] lib/canonical/launchpad/images/src/launchpad-gem.svg in the Launchpad source tree has the logo in various permutations and could perhaps be cut down. I'm sure there must be a better source somewhere [19:24] Yeah, screenshots.debian.net really should not be using that oauth strategy. [19:25] It's far too much privilege for Launchpad users to grant to a third-party site. [19:25] cjwatson: I see. It keeps asking what kind of access the Launchpad should grant for the site anyway. I assume that with OpenID that's more like authenticate-and-go. [19:26] As dobey says, you should be using OpenID against SSO, not OAuth against Launchpad. [19:26] Will do. [19:27] We normally prefer language like "Sign in with Ubuntu SSO" (or in some places "Sign in with Ubuntu One", though that's a bit weird IMO since that's otherwise an obsolete brand) for third-party sites. Launchpad is (at least in theory) just another SSO consumer. [19:27] Only in theory because it actually occupies a somewhat special position due to SSO's history, but still. [19:28] To use OpenID I'd have to ask the user what Launchpad nickname they have, right? [19:28] OpenID normally works by redirecting the user to login.ubuntu.com with a pile of special query parameters, which will cause login.u.c to ask them for email address and password (and maybe two-factor auth). [19:29] When that process is done, it redirects back to your site by way of one of those query parameters. [19:30] (Of course you should find an existing library for this rather than rolling it yourself.) [19:31] Try going to e.g. https://myapps.developer.ubuntu.com/ and signing in there to see the flow. [19:40] cjwatson: What is the OpenID identifier for Ubuntu? [19:40] aka URL [19:51] Signum: You mean the endpoint URL? https://login.ubuntu.com/ [19:51] Great, thanks. I'll try that.