I may have misspoken... what I read: Requires cookies: browsers without cookie support will never have a valid ticket and will therefore never be authorised by mod_auth_tkt. There are no current plans to support non-cookie-based authentication.
While true, it does support "basic" auth, I was more thinking along the terms of automation where basic authentication is used to access a resource, say a curl request, etc. If I understand this statement, my curl with basic auth would be "accepted", and the response would contain a set-cookie with the token, the access would be denied unless I went through multiple steps with curl or some automation system to store the cookie, then present it to access the protected resource. I really should have written in my reply, I need to be able to support non-cookie-based authentication using basic auth. Sorry for the confusion. Dean -- You received this message because you are subscribed to the Google Groups "modwsgi" group. To view this discussion on the web visit https://groups.google.com/d/msg/modwsgi/-/3rtMWLC_vuUJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/modwsgi?hl=en.
