> Anyone setting a Fedora avatar would use the OpenID flow for > Libravatar. I just did a few minutes ago to check my avatar selection > for various emails. It does not support OIDC. > Libravatar is also a Fedora-sponsored service. To give those people more time, I think we can do the following: - run an ipsilon instance somewhere else in our infrastructure, with a less critical SLE. - add OpenID Delegate headers[1] to id.fedoraproject.org to point to this new place - add a big fat warning on the ipsilon instance warning people to setup another authentication source because this one will go away - leave it running for a while, for example 1 year [1] https://openid.net/specs/openid-authentication-1_1.html#delegating_authentication This will mean that we still need to keep Ipsilon running for a while, but it'll be less bad when issues happen because it'll be less critical to our infra. -- _______________________________________________ infrastructure mailing list -- infrastructure@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to infrastructure-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/infrastructure@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
