-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Remy Blank skrev 07. april 2009 22:24: > John Hampton wrote: >> I'd like to hear the opinion of others on this point. SessionStore or >> htpasswd file as the default password store for new environments > > I have no strong preference for either one, but I also think that using > the same authentication store for Trac and other systems is the > exception rather than the norm.
Subversion? Mercurial? Etc... *Not* sharing the authentication store for at the very least version control must surely be the exception ? Certainly ldap/ad/whatever might be more common that some kind of flat backend ... but still ? I assume the sessionstore hashes and salts the password ? I haven't looked at this, but hash w/salt should certainly be the default, whichever implementation ends up being default. As for using trac to authenticate subversion -- then ldap, CAS or something else would make more sense (ie: don't reinvent ldap/cas/openid/pam ...) Best regards, - -- .---. Eirik Schwenke <[email protected]> ( NSD ) Harald HÃ¥rfagresgate 29 Rom 150 '---' N-5007 Bergen tlf: (555) 889 13 GPG-key at pgp.mit.edu Id 0x8AA3392C -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAknd3wsACgkQxUW7FIqjOSw9DACgrj8hfHieHZkbqWakwF59Lt3x uOwAnRnWyx5pKeBHKCxu8SOmGSpz9lTy =WBuv -----END PGP SIGNATURE----- --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Trac Development" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/trac-dev?hl=en -~----------~----~----~----~------~----~------~--~---
