tags:

views:

239

answers:

8
+1  Q: 

What method do you use to let users login to your site? (OpenID, Google, own, other?)

And... which is easiest to implement?

+3  A: 

OpenID

Huppie  2008-09-18 15:01:50
Not exactly the easiest method to implement???
GateKiller  2008-09-18 15:07:44
I know... that's where the voting comes in ;-)
Huppie  2008-09-18 17:16:15
A: 

This depends some what on th eend user.

Spring Security / Acegi I tend to use for most of my projects.

I find openId cumbersome for most non techy users. Stack overflow has a unique user base so its perfectly suited to using it.

Paul Whelan  2008-09-18 15:02:29
+2  A: 

ASP.NET 2.0 Forms Authentication

Very easy to implement and use, as long as you're working with ASP.NET.

tjrobinson  2008-09-18 15:03:37
Agreed. Form authentication and a SQL table of users :)
GateKiller  2008-09-18 15:04:19
A: 

I would implement my own using their email address as the login. This, in my experience is the "easiest to implement!".

GateKiller  2008-09-18 15:03:52
+1  A: 

ASP.NET Forms Authentication + Open ID. Your basic user is a proprietary one and you can then use your Open ID instead of it.

Omer van Kloeten  2008-09-18 15:05:51
Sounds good, got any links?
tjrobinson  2008-09-18 15:07:50
It was an internal implementation which used DotNetOpenId. http://code.google.com/p/dotnetopenid/
Omer van Kloeten  2008-09-18 15:17:50
+1  A: 

Assuming you are using .NET, using the build-in Forms Authentication with the built-in SQL Membership Provider is really easy. Check out the video tutorial at here.

Mike Comstock  2008-09-18 15:17:43
+1  A: 

With the Ruby on Rails project I'm currently working on I just dropped in the Restful Authentication and Rails Authorization plugins. It's been a real headache remembering which one handles user login and which one handles user permissions. That aside, the combination has been a real time saver.

I believe there is a way to use OpenIDs with Restful Authentication but I haven't looked into it very much.

Edit: I thought I should note that I modified the Restful Authentication plugin's generated code for the user model to use the email address instead of an account name.

epochwolf  2008-09-18 15:31:35
A: 

I prefer to keep full control of my logins, so used to write them myself, but got tired of keeping up to date with all the latest security techniques, etc.

Its worth it though if you want to know exactly what's happening, and learn something along the way.

I now use this : http://www.prophpscripts.com/scripts/user-session-pro

which basically does it all for you, and still gives you control.. and it means I don't have to bother keeping it up to date as they do! Pretty cheap to.

Simon  2009-11-24 14:40:29

related questions

Web framework programming mindset
ASP.NET - asp:xxx Controls versus standard HTML
From Desktop to Web browser considerations
Which PHP Framework will get me to a usable UI the fastest?
Best practice for integrating TDD with web application development?
How to Manage Web Development?
When is a file just a file?
Recommendations for browser add-on tools to help with development
REALLY Simple Website--How Basic Can You Go?
Convince Firefox to send an If-Modified-Since header over HTTPS
What do the getUTC* methods on the date object do?
Planning and Building a mobile enabled site for your main site.
Firebug for IE
Javascript and PHP - Login Script with hidden buttons
Firebug won't display console feeds for some of my sites
Displaying ad content from Respose.WriteFile()/ Response.ContentType
How can I detect if a browser is blocking an popup?
How to Test Web Code?
What PHP framework would you choose for a new application and why?
How do you disable browser Autocomplete on web form field / input tag?
What is Progressive Enhancement?
In HTML, how to word-break on a dash?
The Definitive Guide To Website Authentication
How do you test layout design across multiple browsers/OSs?
How much of the Web build process do you/should you automate?