Pulling persona out of Discourse core

(Sam Saffron) #1

FYI, I am pulling out the code to support persona for a few reasons.

  1. It is unmaintained and broken at the moment.
  2. It uses a different pipeline and series of hacks we don’t use in any of the other auth providers
  3. The omniauth gem we use is a fork of omniauth-browserid (should really be called omniauth-persona)

I would love to include it by default if the implementation was not so hacky and did not depend on so many structural changes.

So, instead of adding it to core, lets get it in a self contained plugin first and decide based on that if we add it back to core.

see also:



@mozCallahad @lloydhilaiel

(Sam Saffron) #2

FYI the commit that removed it (in case you would like to rework it)


(Logan Rosen) #3

How can sites that already have many established Persona accounts easily transition to None of the ones on the Mozilla Discourse have passwords, as Persona was established as the only authentication option. We’re willing to switch authentication methods, but we’re kind of stuck without a clear transition path.

(Sam Saffron) #4

It needs to be extracted into a plugin, it was just very unfortunate that nobody took ownership.

Since all users on your forum have emails they can reset passwords. Its possible you could script it.

If you enable gmail/facebook auth logging in would take over.

(Tanner Filip) #5

I’ll see if we can find anybody who wants to take over. Persona auth is a big appeal to us, I’d hate to see it go away.

(Vikhyat Korrapati) #6

I have some free time on Monday, will probably be able to work on this.

(Vikhyat Korrapati) #7

I’ve pulled all of the Persona login code into a plugin: Persona Login Plugin

(Sam Saffron) #8

See the response by @radq you should be able to move to a plugin

(Tanner Filip) #9

Thank you so much! I’ll install this on our dev server as soon as I get

(Anton) #10

UPDATE. Persona is being shut down in November 2016. Persona.org and related domains will be taken offline on November 30th, 2016.