Greetings, all. I've been working with CApp for a while, and I really
like it.
I have some questions regarding best practices when implementing
role based access control (RBAC). I have been playing with
CApp::Authentication and Authorization, and they both do basically
what I need.
Here's the ske
On Sat, Mar 24, 2012 at 10:32:59AM +1100, Ron Savage wrote:
> Hi Brett
>
> On 24/03/12 05:30, B. Estrade wrote:
> > https://gist.github.com/33d23edf8fa2c0f48dc0
>
> The return stmt in your groupmap code seems overly complex:
>
> #!/usr/bin/env perl
>
> use
On Fri, Mar 23, 2012 at 8:05 PM, Jerry Kaidor wrote:
>
>> I have some questions regarding best practices when implementing
>> role based access control (RBAC). I have been playing with
>> CApp::Authentication and Authorization, and they both do basically
>> what I need.
>
> *** Me too. I have thr
find them
helpful.
Brett
>
> I did not try them yet myself.
>
> On 29/03/12 00:40, B. Estrade wrote:
> > On Fri, Mar 23, 2012 at 8:05 PM, Jerry Kaidor wrote:
> >>
> >>> I have some questions regarding best practices when implementing
> >&
On Wed, Apr 04, 2012 at 03:13:13PM +1000, Cees Hek wrote:
> On Wed, Apr 4, 2012 at 1:51 PM, Jason Crome wrote:
> > I keep banging my head against the wall trying to figure this out. ?I
> > expect that I am doing something else wrong, but whenever I comment out the
> > session initialization logi
On Thu, Apr 12, 2012 at 01:29:37PM +1000, Ron Savage wrote:
> Hi Folks
>
> I've uploaded to CPAN:
>
> o CGI::Snapp::Dispatch V 1.00.
>
> This distro includes CGI::Snapp::Dispatch::Regexp.
>
> Both modules support usage in a PSGI environment.
>
> This module is a partner for CGI::Snapp, and tog
On Fri, Apr 13, 2012 at 06:48:34AM -0400, Nic Zero wrote:
> I too have recently rewritten CGI::App and most of its core plugins.
> That was not my original plan.?? You may remember recently I was
> recommending people make use of class-level initialisation and
> only do object-level initialisation
I am having some time trying to figure out errors with this kind of
output:
Can't locate object method "error" via package "Can't locate
object method "error has occured" via package...
What is the best way to get useful information to the browswer when
something goes awry?
Brett
On Fri, Apr 20, 2012 at 08:57:53AM +1000, Ron Savage wrote:
> Hi Brett
>
> On 20/04/12 08:47, B. Estrade wrote:
> > I am having some time trying to figure out errors with this kind of
> > output:
> >
> > Can't locate object method "error" via pa
I am finally at the point where I am writing a driver, so I have a
stupid question.
Do I need to place this into the main module's parent directory in
order to have Authen/z use them?
Thanks,
Brett
On Wed, Mar 28, 2012 at 09:26:14AM -0700, Jerry Kaidor wrote:
> Hello,
>
>I just emailed you
,
I have in -
/path/to/my/lib/CGI/Application/Plugin/Authentication/Driver/MyDriver.pm
Now I can configure it to use: DRIVER => ['MyDriver', {arg1=>foo,...}],
Thank you,
Brett
> Nic
>
>
>
>
> From: B. Estrade
> To: CGI Application
> Sent: Tuesday, April 2
I am having an issue with CAP Dispatch that seems to be rearing its
ugly head when I send, as part of the route, serialized JSON data.
The issue is that I have a value with a backslash in it.
I am pretty sure the URL parsing done by Dispatch is splitting on this
backslash, but I though that it wou
On Thu, Jun 07, 2012 at 01:17:12PM +1000, Ron Savage wrote:
> Hi Brett
>
> On 07/06/12 05:37, B. Estrade wrote:
> > I am having an issue with CAP Dispatch that seems to be rearing its
> > ugly head when I send, as part of the route, serialized JSON data.
> > The issue
On Thu, Jun 07, 2012 at 03:45:15PM +1000, Ron Savage wrote:
> Hi Brett
>
> On 07/06/12 13:42, B. Estrade wrote:
> > On Thu, Jun 07, 2012 at 01:17:12PM +1000, Ron Savage wrote:
> >> Hi Brett
> >>
> >> On 07/06/12 05:37, B. Estrade wrote:
> >>>
:41:30AM -0500, B. Estrade wrote:
> On Thu, Jun 07, 2012 at 03:45:15PM +1000, Ron Savage wrote:
> > Hi Brett
> >
> > On 07/06/12 13:42, B. Estrade wrote:
> > > On Thu, Jun 07, 2012 at 01:17:12PM +1000, Ron Savage wrote:
> > >> Hi Brett
> > >>
&g
I am finding that if I have a runmode that is protected via
authentication and authorization, the authen doesn't happen before the
authz is validated.
In otherwords, I want a authen to happen first; if it fails, redirect
to the login. If authen is okay, proceseed to authz.
Right now I have this u
On Wed, Jun 13, 2012 at 02:58:28PM -0500, B. Estrade wrote:
> I am finding that if I have a runmode that is protected via
> authentication and authorization, the authen doesn't happen before the
> authz is validated.
>
> In otherwords, I want a authen to happen first; if it
ught this
> before it got this far. Perhaps there is a problem with the order in
> which you configured things which will influence the order in which
> the authen and authz callbacks get triggered.
I guess this is where I need to look. Thank you,
Brett
>
> Cheers,
>
> Cees
oughts?
On Thu, Jun 14, 2012 at 09:44:32AM -0500, B. Estrade wrote:
> On Thu, Jun 14, 2012 at 10:12:40AM +1000, Cees Hek wrote:
> > Hi Brett,
> >
> > Authorization is not purely related to authentication. For example
> > you could authorize access based on an IP Addre
What is the idiomatic way for dealing with uploads via CAP?
I am using CGI::Simple.
Thank you,
Brett
--
Register Now for cPanel Conference
Oct 8-10, 2012, Houston, Texas
http://conference.cpanel.net/
# CGI::Application community mailing list
##
Thank you, Mark. Responses are inlined.
On Tue, Aug 28, 2012 at 11:27:04PM -0400, Mark Stosberg wrote:
>
> Hello Everyone.
>
> I'll start with a apology about not being as present as I intended.
> Messages from this list were not coming directly to my Inbox for some
> time, and it took me longe
Snipped
On Thu, Sep 06, 2012 at 09:12:40AM +1000, Ron Savage wrote:
> Hi Brett
> > It would be really nice to merge in some bare bones Authentication and
> > Authorization support - maybe ever by more fully developing CAP's lifecycle.
>
> Likewise. It's a pity a standard(!) way of doing this with
ore sense to do a way with setup
altogether and use a method similar to the init hook you mentioned
below. I am sure MMWV, but I will take your advice below. Thanks for
the help.
Brett
On Thu, Sep 6, 2012 at 12:04 PM, Rhesa Rozendaal wrote:
> On 09/06/2012 04:48 PM, B. Estrade wrote:
>
&
Thank you, Mark.
I accept what you so at face value and will seek to educate myself
more. Below I address the questions you asked me.
On Sat, Sep 08, 2012 at 06:10:55PM -0400, Mark Stosberg wrote:
>
snip..
> >
> > It would be really nice to merge in some bare bones Authentication and
> > Autho
On Tue, Sep 18, 2012 at 12:19:46PM -0500, Bill Stephenson wrote:
> On Sep 15, 2012, at 10:58 AM, Mark Stosberg wrote:
>
> > Most web clients support JSON now, which allows for more complex
> > structures than the simple key/value pair that CGI.pm uses.
>
>
> Mark, I think this is relevant to wha
I had originally suggested adding authentication and authorization
stages in the life cycle of the application, and after looking at
things it seems that your very close to having a general system that
could make it easy to not only add hooks to callbacks, but to add and
manage callbacks themselves
On Tue, Nov 06, 2012 at 03:32:13PM -0500, Mark Stosberg wrote:
>
> > You call init in BUILD, but then explicitly run down the callback list in
> > the run() method. What I am wondering is if you could bridge the gap to the
> > other side that would allow one to munge around with the *ordered con
On Tue, Nov 06, 2012 at 09:37:21PM -0500, Mark Stosberg wrote:
> >> Brett, I think this existing functionality would provide what you want:
> >>
> >> PSGI::Application->new_hook('authorization');
> >> PSGI::Application->add_callback('authorization', \&callback);
> >
> > Kind of, but what it doe
28 matches
Mail list logo