On 17 Feb 2009, at 22:49, Graham Dumpleton wrote: > > How easy that is depends on the authentication mechanism used. > > If you using Apache to perform HTTP Basic or Digest authentication for > you, possibly with Python code serving as auth provider (if using > mod_wsgi), then you can use standard Apache authorisation mechanisms > to define the restrictions. > > The hard one is where you are using a form/session based login > mechanism. This is because this is handled in the application after > Apache's authentication/authorisation phases. What would be required > for that to work is a SSO mechanism that can be applied at Apache > level. Such a mechanism will be available in Apache in 2.4. > > Now, there is an outside chance that the authnz hooks in mod_wsgi may > be able to be used, but really depends on how you are handling > authentication, so perhaps explain how you are managing that.
Unfortunately I am just using a very simple form/session based login system, and I'm not serving through mod_wsgi (I'm using mod_rewrite). I had considered creating a htpasswd file from my database and using my model to write updated data to the file whenever someone updates their password. Though that would only allow user level access, not group level. That certainly seems like the most straightforward solution for the moment, and maybe I should start serving through mod_wsgi in the long term. The other idea I had was that files could be stored in directories that were named after a hash of the username/password/salt so that the address was less guessable than the username/password combination would be in HTTP Basic. That wouldn't give people the feel of security though, so it probably wouldn't satisfy users. Ed --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "pocoo-libs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/pocoo-libs?hl=en -~----------~----~----~----~------~----~------~--~---
