On Wed, Jul 20, 2011 at 12:11 PM, Jay T <[email protected]> wrote: > We are starting to write a new application in Pyramid and having spent some > time reading the documentation available on your website, I have some > questions regarding Authentication: > > Pyramid offers few ways of performing Authentication (out of the box) and > also provides the capability to write a custom Authentication policy by > implementing the IAuthenticationPolicy interface. > The question I have is can I rely on repoze.who's authentication and > integrate it within pyramid ? > I have also looked at pyramid_who package which implements > IAuthenticationPolicy using repoze.who. However, does this package work in > conjunction with repoze.who plugins ? > > I am interested in using the repoze.who.ldap plugin to perform ldap based > authentication. Is it possible to use pyramid.who package to do that ? > If not, can I install repoze.who and rely entirely on it effectively > bypassing Pyramid's authentication ?
Well, I'll be looking at that later this year when I port my Pylons app with a hybrid LDAP+local db users, but I don't have any comment at this point. I'll consider either repoze.who connected to Pyramid's auth, or a custom authenticator if that's too messy. I'd have to write a custom module for repoze.who in any case, and I'm not sure going through Who's API would be worth the effort. On the other hand, I' would like to use Who's automatic fallback to Authorized headers instead of forms for non-interactive user agents. -- Mike Orr <[email protected]> -- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en.
