On Thursday November 27, 2008 14:13:06 Dalius Dobravolskas wrote:
> I agree with that. Even more REMOTE_USER is not enough to distinguish
> between different authentication methods when multiple methods are
> used.
>
> Because of that I offer to do following in r.who:
> Set REMOTE_USER as username. Usually all authentication systems
> provides one or another form of username.
> Set x-wsgiorg.user_data with data dict (e.g. certificate details,
> OpenID SREG data and etc.). Name was proposed by Ian Bicking.

That sounds good to me, but I don't why that's not done. There must be a good 
reason, I think.

> This way r.who and r.what will be compatible with other authentication
> and authorization solutions.

Right. :)

Cheers.
-- 
Gustavo Narea <http://gustavonarea.net/>.

Get rid of unethical constraints! Get freedomware:
http://www.getgnulinux.org/


--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups 
"pylons-discuss" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at 
http://groups.google.com/group/pylons-discuss?hl=en
-~----------~----~----~----~------~----~------~--~---

Reply via email to