magus wrote: > I'd like to roll my own basic authentication for a web service, i.e. I > don't want to use the contrib.auth module. If possible I'd like to > avoid relying on the server for this. Anyone who can offer some > pointers on how to raise a 401 on a request that doesn't contain the > Authentication: header? > > The 401 also needs to contain the realm, how would I do that? >
Forgive the possibly stupid question, but why not just use htaccess / apache auth? (or insert the method supported by your web server here). It is simple, requires almost no code and you will get the user name as an environment variable. Beyond that, look into what Jacob said. The session layer is supposed to be cheap if you never ask for anything from it. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/django-users -~----------~----~----~----~------~----~------~--~---
