Commit 41717f4d authored by Kristina Hoeppner's avatar Kristina Hoeppner

admin/institutions and intro dashboard: Remove Persona

Persona auth is being deprecated and thus we need
to remove it.

(cherry picked from commit a38594ee)
parent 9f4a45b8
......@@ -301,10 +301,12 @@ Before you can use the IMAP, LDAP, SAML or XML-RPC authentication methods, you m
* **Internal**: User accounts are :ref:`created in Mahara <add_user>`. This is the default authentication method for a new institution.
* **LDAP**: User accounts are authenticated against an :ref:`LDAP server <ldap>` or Active Directory server.
* **None**: Anyone can log in by picking a username and password. This should only be used for testing but not on a live site.
* **Persona**: User accounts are authenticated against :ref:`Persona <persona_authentication>`.
* **SAML**: A :ref:`SAML 2.0 Identity Provider Service is needed <saml>` that has the user accounts.
* **XML-RPC**: This is the authentication method :ref:`used for MNet to connect Mahara with Moodle or another Mahara <mnet>`.
.. warning::
|new in Mahara 15.10| Persona authentication is not available anymore because Mozilla dicontinued it. You can :ref:`migrate <plugin_persona>` any existing Persona accounts to internal authentication.
#. Click the *Add* button to see the configuration screen for an external authentication method before it is added.
.. warning::
......@@ -482,36 +484,6 @@ You can set up your LDAP authentication so that group creation can be automated.
#. **Only these group names**: When creating groups based on user attributes, only create groups with these names. This will not affect groups created via the "Sync groups stored as LDAP objects" setting, if it is active.
#. Click the *Submit* button to enable this authentication method or click *Cancel* to abort your changes.
.. index::
pair: Authentication; Persona
single: Register with a Persona account
.. _Persona_authentication:
Persona authentication
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
`Persona <https://persona.org/>`_ is a project of the `Mozilla Identity Team <http://identity.mozilla.com/>`_. It allows people to have one login across multiple sites without having to divulge the password to these sites. All they need to log in to a Persona-enabled site is their email address.
.. warning::
If you are just starting out with Mahara, do not use Persona authentication. Mozilla is going to `shut down this authentication service <https://mail.mozilla.org/pipermail/persona-notices/2016/000005.html>`_ at the end of November 2016.
.. figure:: /images/administration/institution_persona.*
:alt: Configure the Persona authentication
Configure the *Persona* authentication
#. **We auto-create users**: Switch to "Yes" if you wish to allow new users to register for your institution automatically using their Persona credentials.
#. Click the *Submit* button to enable this authentication method or click *Cancel* to abort your changes.
.. warning::
The normal registration work flow and the potential confirmation of accounts does not come into play when you allow the auto-creation of accounts as this is an external authentication that is then considered to be trusted. We recommend you do not use the auto-creation of accounts unless you a sure that only trusted people can register. Otherwise, anybody with a Persona account could register on your site. This option could be used when your site is only available in an intranet or you want to allow anybody to register.
Users with a Persona account can go through the regular work flow of registering their accounts if the administrator allowed the registration for their institution (and requires the confirmation of accounts).
.. note::
If users have internal accounts and later link the email addresses they use to a Persona account, they can also log in with their Persona credentials when the site administrator allowed the Persona authentication in their institution.
.. index::
pair: Authentication; SAML
single: Allow users to link own SAML account
......@@ -1281,25 +1253,6 @@ When users try to self-register for your institution, they must provide certain
#. The administrators of that institution and the site administrator receive a notification about the pending registration. They then :ref:`review pending registrations <review_pending_registrations>`.
#. You will receive an email which includes a link to confirm your email address. You must click that link within 24 hours. If you do not, you will have to start the registration process again from the beginning.
.. index::
single: Self-registration approval for Persona authentication
Self-register with a Persona account
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
The self-registration process with administrator approval also works for users who wish to use `Persona <https://www.persona.org/>`_. It needs to be set up as authentication method, and potential users go about in a very similar way.
.. figure:: /images/institution_registration_persona.*
:alt: User self-registration for an institution with a Persona account
User self-registration for an institution with a Persona account
Instead of clicking the link *Register*, users who have a Persona account can use that to register for an institution that allows for Persona authentication.
#. Click the *Persona* button.
#. Sign in to your Persona account.
#. Follow the :ref:`registration steps <internal_registration>`.
.. index::
single: Add institution staff rights during registration approval
......
source/images/login.png

19.9 KB | W: | H:

source/images/login.png

17.9 KB | W: | H:

source/images/login.png
source/images/login.png
source/images/login.png
source/images/login.png
  • 2-up
  • Swipe
  • Onion skin
......@@ -20,12 +20,11 @@ You always need a login to authenticate yourself and access your personal inform
Login form
#. **Username**: Type your username in this field (not for Persona, SSO or Moodle accounts).
#. **Username**: Type your username in this field (not for SSO or Moodle accounts).
#. **Password**: Provide your password. If you enter your password incorrectly 5 times in a row during one session, access is locked for 5 minutes before you can try again.
#. Click the *Login* button to access your account.
#. **Lost username / password**: If you do not remember your username or password to your account, click this link to be taken to a page where you can request an email with your details. It will contain your username and a link to change your password.
#. **Register**: If you do not have an account, and your institution allows self-registration for an account, use this link and follow the instructions on the next page.
#. **Persona login**: If you log in via `Persona <https://www.persona.org/>`_, please use this login button instead of the login form.
#. **SSO login**: If you log in via your institution's SSO (single sign-on) account, please use this button to be taken to the SSO login.
.. note::
......@@ -33,9 +32,11 @@ You always need a login to authenticate yourself and access your personal inform
The "Lost username / password" link only works for internal accounts where you use the regular login form.
If you log in via Persona, SSO or Moodle for example, you must retrieve your password directly from these services. If you do not know how to do that, please ask your administrator.
If you log in via SSO or Moodle for example, you must retrieve your password directly from these services. If you do not know how to do that, please ask your administrator.
You only see the Persona and SSO buttons if these authentication methods have been enabled on your site.
You only see the SSO buttons if SSO has been been enabled on your site for at least one institution.
|new in Mahara 15.10| Persona authentication is not available anymore because Mozilla dicontinued it. You can :ref:`migrate <plugin_persona>` any existing Persona accounts to internal authentication.
:index:`You <single: Login; Hide login form>` can hide the login form entirely if your Mahara instance generally only connects to an external authentication method such as MNet or CAS. In these cases, your users will need to log in via a different site and seeing the login form on the homepage may only be confusing.
......
......@@ -25,10 +25,6 @@ Create a collection of badges
Drag a badge onto a new collection space
#. Go to your `Mozilla Backpack <http://backpack.openbadges.org>`_. You must have already pushed at least one badge to it to complete the following steps.
.. note::
You will need to create a Persona account in order to use the Mozilla Backpack. Increasingly, you can connect with Persona to websites. You can also use it as :ref:`authentication method <Persona_authentication>` in Mahara.
#. Click the *Collection* navigation item to enter your badge collection area.
#. Drag one of your badges onto a (new) collection space.
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment