> But how it could come that web browsers (Safari, Opera) open > those feeds without any need to authorize?
I might be wrong - I have not read #540 in details, but Safari and Opera are web browsers: if the browser has been used to browse Trac (web pages, no RSS) you have been through the authentication process, /login URL: in other word, once you've 'logged in' on Trac the credentials are sent by the browser to Trac on each request: whether the requested page is a web page or a RSS feed does not matter. OTOH, a pure RSS client attempts to access the defined URL (/timeline...), it does not know about the /login stuff. The problem may be a little more complex, but you got the idea. To sum up: if you use the same web browser to read the feed and browse Trac, RSS w/ authentication may work; if you use a dedicate RSS client it may not - for now. I have not checked it up, but I guess that if you use Apache and force the authentication for the whole project (no anonymous access at all), RSS w/ authentication may work w/ any RSS client. The trouble is that this mode is not supported by tracd, AFAIK. Cheers, Manu --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Trac Users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/trac-users?hl=en -~----------~----~----~----~------~----~------~--~---
