[
http://jira.xwiki.org/jira/browse/XWIKI-2018?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_23126
]
Ricardo RodrÃguez commented on XWIKI-2018:
------------------------------------------
Thus, if I have well understood:
1. To accept the syntax proposed by Sergiu, modifications/new features are
needed in the XWiki server side.
2. it must be possible to use any user agent to pass the right authorization
header to XWiki as of now.
So, the point could be to know what is the correct authorization header.
Private RSS feeds are not our main concern now, but the situation also applies
to the access to plain R code stored in XWiki pages with restricted access.
Theoretically, it must be possible for us to send this header from R, so the
syntax proposed by Sergiu won't be needed and could be replaced with a new R
function.
> Support URL authentication
> --------------------------
>
> Key: XWIKI-2018
> URL: http://jira.xwiki.org/jira/browse/XWIKI-2018
> Project: XWiki Core
> Issue Type: New Feature
> Components: Actions and URLs, Authentication and Rights Management
> Affects Versions: 1.2
> Reporter: Sergiu Dumitriu
> Fix For: 1.4 M1
>
>
> In order to support private RSS feeds, XWiki should:
> - work behind https (does, with the correct container settings)
> - accept authentication using URL parameters, like
> https://server/bin/view/Main/NewsRss?xpage=rss&username=user&authtoken=token
> The token should verify the password and the IP, so that stealing it would
> not work.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.xwiki.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
notifications mailing list
[email protected]
http://lists.xwiki.org/mailman/listinfo/notifications
