for something similar, i just used oAuth. since I control both endpoints (the micro-app and the accounts app), the token exchange is automatic and happens in two instantaneous redirects (ie, the user doesn't click anything). the benefit of this approach is that you can use different servers and everything is truly standalone.
-- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/pylons-discuss. For more options, visit https://groups.google.com/d/optout.
