From FedoraProject

Revision as of 00:31, 15 February 2014 by Puiterwijk (Talk | contribs)

Jump to: navigation, search



OpenID is a way to login to applications or resources using an existing account that acts as a identity provider. The Fedora project acts as an OpenID identity provider for anyone with a Fedora Account System account.


We have an OpenID provider running named FedOAuth.

When trying to log on to an OpenID enabled site, give
as URL. Example, if your FAS login is JohnDoe, you would enter If you are not logged in to FAS at this stage, you will be first taken to the FedOAuth login page. On the first login from each external site, you will be taken to and asked to approve the OpenID request.


FedOAuth also is an Persona provider. Just enter your email into any website that accepts Persona-based authentication and you will only need to enter your FAS password.


Screenshots are here.


OpenID should work for all websites accepting OpenID login. We are looking for feedback and developers to improve the code. Send feedback to the fedora infrastructure list, #fedora-admin on or in a infrastructure ticket.



git clone ssh://


FedOAuth was written by Patrick Uiterwijk.

A good place to start learning about OpenID and FedOAuth would be this classroom.


OpenID was first discussed at the 2006 FedoraSummit. The OpenID implementation was completely rewritten from scratch in 2013.


Many thanks to User:Ricky for his explanations on IRC.