> On Nov 28, 12:13 am, "Dalius Dobravolskas" > <[EMAIL PROTECTED]> wrote: >> Hello, Gustavo, >> >> > On the other hand, because REMOTE_USER (which isn't set by r.who) is not >> > always enough and also some of the future features will rely on >> > future/existing repoze.who plugins, for example: >> >> I agree with that. Even more REMOTE_USER is not enough to distinguish >> between different authentication methods when multiple methods are >> used. > > Does that mean you ignore AUTH_TYPE variable passed in from Apache > where Apache module performs the authentication? My authentication middlewares don't set it but thanks for pointing that. I guess I should implement that. I promise to look in it.
My authorization (not yet middleware) can't ignore that because it is only helper functions for users to do authorization. -- Dalius http://blog.sandbox.lt --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en -~----------~----~----~----~------~----~------~--~---
