On Thursday November 27, 2008 14:13:06 Dalius Dobravolskas wrote: > I agree with that. Even more REMOTE_USER is not enough to distinguish > between different authentication methods when multiple methods are > used. > > Because of that I offer to do following in r.who: > Set REMOTE_USER as username. Usually all authentication systems > provides one or another form of username. > Set x-wsgiorg.user_data with data dict (e.g. certificate details, > OpenID SREG data and etc.). Name was proposed by Ian Bicking.
That sounds good to me, but I don't why that's not done. There must be a good reason, I think. > This way r.who and r.what will be compatible with other authentication > and authorization solutions. Right. :) Cheers. -- Gustavo Narea <http://gustavonarea.net/>. Get rid of unethical constraints! Get freedomware: http://www.getgnulinux.org/ --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en -~----------~----~----~----~------~----~------~--~---
