CAS sounds very interesting as a SSO. I may give that a try, as well
as maybe just perform some unit tests just to make sure I know what is
going on under the hood. Thank you all for your much needed input.
Greg
On Feb 19, 10:32 am, Phlip wrote:
> geraldcor wrote:
> > and
geraldcor wrote:
> and all will be good - I think. Does that sound reasonable?
Been there done that. But...
> using the given algorithm ('md5', 'sha1' or 'crypt').
^
Pick the right one wisely!
I would start with unit tests that
On Feb 19, 2:15 am, geraldcor wrote:
> All of your comments prompted me to start reverse engineering what
> django does and I came across the check_password method which just
> separates the algorithm, salt and hash and then sends it to the
> following method to compare the
All of your comments prompted me to start reverse engineering what
django does and I came across the check_password method which just
separates the algorithm, salt and hash and then sends it to the
following method to compare the raw password to the hash password. So
basically, in Ruby, I can do
You could have a secure url that the RoR apps redirect to if the user
isn't authenticated with Rails. That url would have the login_required
decorator. If they successfully login on the django side (or are
already logged in), then they get redirected with some sort of get
variable user id + hash
how about the RoR site serve authentications to the Django site over
Oauth?
unless if, as Tim's answer suggests, users don't want to log in twice?
and shouldn't the salt and hash pattern appear inside the auth contrib?
--
You received this message because you are subscribed to the Google
Is it possible to transfer the valid session from Django to RoR? I'm not
really sure if that makes sense, but it's what comes to mind. Basically, if
you have already authenticated on one framework you should be able to pass
along the authentication without having to copy the password over.
FWIW
Hello all,
Internally, we have some RoR apps and Django apps. Our main website
runs on Django and is considered to be the main portal for all other
apps. Currently, we have a Rails authentication system and a Django
authentication system. We want to have one user table to authorize
against.
The
8 matches
Mail list logo