> One idea I've had, but never got around to is a OpenID/OAuth service that could authenticate users via the AD.
I've just implemented auth0 on a website that I run, solely because one of my sites/customers wanted to have the service I provide be available via single sign-on to their staff and their customers.
They store all of their staff in Active Directory, and their users in an SAP store.
auth0 gives me a simple OAuth API, and I just point to my customers' configured auth0 client, and they can configure their auth0 account to use Active Directory and SAP.
I actually liked the integration, wasn't hard to achieve and solved a hard problem.
Given that auth0 is free for up to 7k users signing in within a month, I may make this available to other customers.
However my customer needs vary, some of them will be good with just the auth0 free plans, some will choose the paid plans... some do not need it at all. The one who did need it found the price well within their estimate for it (they had a figure in mind for paying for the feature to be added which amounts to about 3+ years of auth0 service).
I've just implemented auth0 on a website that I run, solely because one of my sites/customers wanted to have the service I provide be available via single sign-on to their staff and their customers.
They store all of their staff in Active Directory, and their users in an SAP store.
auth0 gives me a simple OAuth API, and I just point to my customers' configured auth0 client, and they can configure their auth0 account to use Active Directory and SAP.
I actually liked the integration, wasn't hard to achieve and solved a hard problem.
Given that auth0 is free for up to 7k users signing in within a month, I may make this available to other customers.