As we see more staffers using more OCF services which require login, its worth considering if we can easily standardize login support with a Single Sign-On (SSO) system, to have a single system managing login state, like UC Berkeley’s CAS.
Based on Wikipedia’s list of SSO implementations, the following providers seem worth of discussion or further research.
It might be advisable to move to MIT Kerberos to facilitate this change. We also have campus administrators and mailing lists which could be helpful in considering our options as well as setup.
This post will be edited to maintain a introduction to this project idea with a focus on readability, OCF concerns/infra implications, and other trade-offs.