#3583: REQ: cookie-based modpython / apache authentication
------------------------------------------+---------------------------------
Reporter: midfield <[EMAIL PROTECTED]> | Owner: jacob
Status: new | Component: Uncategorized
Version: SVN | Keywords: authentication
modpython apache
Stage: Unreviewed | Has_patch: 0
------------------------------------------+---------------------------------
The modpython authentication handler described in
http://www.djangoproject.com/documentation/apache_auth/
is great but it uses HTTP authentication. This is not exactly
transparent: to see protected static content from within a protected
django site the user will have to log in TWICE, once for the django bits,
and once for the static bits. In general there are problems with mixing
authentication types: security, logging out, etc.
I'm pretty sure it should not be too hard to write an authentication
handler (hooking into PythonAuthenHandler) which looks for the session /
authentication cookie instead of using HTTP authentication. I'd do it
myself but it has been a long time since I have written apache / modpython
modules, so if anyone out there is an expert some help would be much
appreciated.
--
Ticket URL: <http://code.djangoproject.com/ticket/3583>
Django Code <http://code.djangoproject.com/>
The web framework for perfectionists with deadlines
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/django-updates?hl=en
-~----------~----~----~----~------~----~------~--~---
