Pro feature request: make authorization better by allowing users to register

[daattali]

I've heard from several companies recently that they'd like to use a login system, but they don't think shiny server's login system is robust enough. Things like being able to sign up new users and retrieve forgotten password would be very useful additions that would make shiny a lot more usable in a production setting in my opinion.

I haven't tried all the login systems, so perhaps that's already possible with one of them (Google?).

[trestletech]

Thanks, Dean.

This is a feature that we've added to RStudio Connect. So I'd encourage you/your clients to take a look there if this is a must-have.

SSP doesn't have this feature built-in but most of the external auth providers have some mechanism for users to sign up. Google, of course, has its own password reset/signup flows. Often organizations will already have a system like this in place around their LDAP/AD servers, etc. So usually this is something that already exists somewhere.

But if you want the server to internally provide this functionality, I'd take a look at RSC.

A while back somebody wrote a Shiny app that allowed you to manage the internal sspasswd database in SSP, I'm not able to find it easily, though. I don't think it would have been the most secure approach, but it was one workaround.

[bborgesr]

Note to self: we need to decide how much of this should be a SSOS, SSP/Connect or regular Shiny feature (a la https://github.com/MarkEdmondson1234/googleAuthR). Should OAuth always be available to any Shiny app? Beyond that (or parallel to that?), what is there that would be valuable for SSP customers?

[daattali]

Thanks Jeff and Barbara

I had stayed away from suggesting Connect because I was under the impression it's still experimental and not to be used for production app deployment. Is that no longer true?

I agree that most orgs will have some sort of LDAP in place, but I usually run into this issue when somebody wants to create more of a consumer web app, that let's arbitrary people sign up, rather than internal to an org.

If Connect is meant to be the future and SSP is meant to be phased out then I suppose it's not worth the trouble to add this into SSP. I'm not sure if that's the plan though, or if they are both meant to live side by side

[trestletech]

SSP will continue to be around for a while, but I'm not sure if this feature is something that would be a top priority for it, given its vision.

Connect is still in Beta but is quite stable. We just released our v1.0 release candidate, so I'd definitely say it's mature enough to recommend to people who are looking for this functionality.

[daattali]

I'll take a much closer look at connect then, thanks! On Sep 30, 2016 9:54 AM, "Jeff Allen" notifications@github.com wrote:

SSP will continue to be around for a while, but I'm not sure if this feature is something that would be a top priority for it, given its vision.

Connect is still in Beta but is quite stable. We just released our v1.0 release candidate, so I'd definitely say it's mature enough to recommend to people who are looking for this functionality.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/rstudio/shiny-server/issues/249#issuecomment-250795982, or mute the thread https://github.com/notifications/unsubscribe-auth/AA6IFKlAGm9AtCUx-wCynxE6BHwHv8HRks5qvT66gaJpZM4KKwal .