Most of the piwik users already have an OpenID Provider. Googlemail is one for example. If you have a Wordpress site, you can use your login there for piwik too.
Most of the piwik users have more passwords then they can handle.
The plugin creates an column openid in the users table. It needs a verified OpenID in _$_SERVER[REMOTEUSER], which is provided by the Apache module _mod_authopenid.
If the openid field of an user is equal to the OpenID given by Apache the user is logged in. No password needed any longer.
You have to use both this plugin and the Apache2 module mod_auth_openid.
<Location /piwik/index.php> AuthOpenIDEnabled On AuthType OpenID </Location>
Make sure that the OpenID login only affects index.php but not piwik.php.
You do not have to register OpenIDs in a way like "require user alice bob".
This is piwik's task now.
Edit config/config.inc.php and add openid=http://my-openid.com
to the [superuser] section.
Then you should be able to login to your piwik as superuser.
If you have more users add their OpenIDs in the SQL user table.
Thomas Schmidt [http://netaction.de]
Please leave a comment if you have any feedback, suggestion, or bug report.
Keywords: OpenID, Plugin, third-party-plugin
Bug: Token Auth is not possible.
Version 0.3 has a simple editor for OpenIDs.
Warning! To use this plugin you need the Apache OpenID module. There is no OpenID client integrated in this plugin.
A lot of users are on shared hosting. You might want to look into using the Zend_OpenId code as a fallback if mod_auth_openid is unavailable.
Maybe you'd like to publish your plugin there?
In any case, keep up the good work and we hope you enjoy Piwik 2!