Joseph Thomas (s) wrote at 2009-3-4 10:29 -0600:
We'd like to construct a zope login URL of the form on another server:
http://zope.domain:port/context/logged_in?__ac_name=uzz__ac_passwor
d=xxxsubmit=Log+in
where the ac_name and ac_password parameters are encrypted using zope
public key
1:55 PM
To: Joseph Thomas (s)
Cc: zope@zope.org
Subject: Re: [Zope] sending a encrypted login URL
Joseph Thomas (s) wrote at 2009-3-4 10:29 -0600:
We'd like to construct a zope login URL of the form on another server:
http://zope.domain:port/context/logged_in?__ac_name=uzz__ac_passwo
r
d
On Thu, Mar 5, 2009 at 21:01, Joseph Thomas (s) jtho...@cap.org wrote:
Thanks, could you elaborate a bit, I'm somewhat new zope/plone:
I assume we'd need a shared key on both on ore j2ee server and zope, and
did you need to create any changes to Plone PAS?
Tres explained it to you. You have
Joseph Thomas (s) wrote at 2009-3-5 14:01 -0600:
Thanks, could you elaborate a bit, I'm somewhat new zope/plone:
I assume we'd need a shared key on both on ore j2ee server and zope
EVP (documented in the *nix man pages) supports both symmetical
as well as unsymmetrical encryption.
When you use
We'd like to construct a zope login URL of the form on another server:
http://zope.domain:port/context/logged_in?__ac_name=uzz__ac_passwor
d=xxxsubmit=Log+in
where the ac_name and ac_password parameters are encrypted using zope
public key (?) and have the parameters decrypted
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Use SSL and you're done.
- -aj
On 04.03.2009 17:29 Uhr, Joseph Thomas (s) wrote:
We’d like to construct a zope login URL of the form on another server:
Andreas Jung wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Use SSL and you're done.
SSL solves SSO? I don't think so.
Cheers
Tino
- -aj
On 04.03.2009 17:29 Uhr, Joseph Thomas (s) wrote:
We’d like to construct a zope login URL of the form on another server: