Integrate 2 models of authentication/user account linking:
i) User has an account in Django user database, and links her NCIM account (or OpenID) ii) User has NO account in Django, but Django app accepts OpenID or NCIM login + assertion (and creates a Django user?)
First pass creates a special login page Second pass links login to the @login_required Django decorator.
NOTE: Currently only the NCIM SAML interface is possible for this, which means writing Python SAML + XML DSig/Encryption classes from scratch (no OSS projects found so far..._!