[Lift] Re: HTTP Authentication Example

Fri, 28 Nov 2008 11:42:13 -0800 

Please check http://github.com/dpp/liftweb/commits/wip-tim-http-digest
... bare in mind it's experimental.

It includes:

1. HTTP basic authentication
2. HTTP digest authentication
3. Roles ... A Role is essentially an n-ary tree. We can specify that
a resource is protected by a Role (LiftRules.preotectedResource).
Actually this means that a resource is accessible if it passed
authentication and the user's role IS
    A role that is child of the role assigned to that resource.
4. On authentication validation function it returns a Role ...
basically saying to lif that authentication passed and this user has
that Role. Lift will match the roles
5. If you want to protect Loc-s with HTTP authentication you can say:

Menu(Loc("Home", "index" :: Nil, "Home", Loc.Protected(() => Role
("admin"))))

...having said that would be nice "hearing" your thoughts/questions.


Br's,
Marius

On Nov 27, 6:25 pm, Tim Perrett <[EMAIL PROTECTED]> wrote:
> Hey Darren - no worries. I cant take all the credit, marius has been
> working on this too :-)
>
> On Nov 26, 11:08 pm, Darren Hague <[EMAIL PROTECTED]> wrote:
>
> > Tim,
>
> > Thanks for doing this - I look forward to having a play with it
> > myself. We want to abstract the OpenID user authentication out of
> > ESME, so we can plug in authentication systems, or even just delegate
> > to J2EE container-based authentication instead. It looks like your
> > work can help us get there.
>
> > Best regards,
> > Darren
>
> > On Nov 26, 12:15 am, Tim Perrett <[EMAIL PROTECTED]> wrote:
>
> > > Awesome - anything you can do would be great.
>
> > > I've commited an example application into the sites dir of that
> > > branch.
>
> > > Cheers, Tim
>
> > > On Nov 25, 10:31 pm, "Derek Chen-Becker" <[EMAIL PROTECTED]>
> > > wrote:
>
> > > > I'll try it out tomorrow if I can open up some time, but I can't promise
> > > > anything.
> > > > Derek
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups 
"Lift" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at 
http://groups.google.com/group/liftweb?hl=en
-~----------~----~----~----~------~----~------~--~---

Reply via email to