On Tuesday, August 27, 2013 6:32:53 PM UTC+2, olemis wrote: > > On 8/27/13, Feuermurmel <[email protected] <javascript:>> wrote: > > On Monday, August 26, 2013 6:16:45 PM UTC+2, olemis wrote: > >> > >> - Digest auth is enabled , what about anonymous access ? > >> * If there's anonymous access to /login/... is forbidden then > you'll > >> get expeted HTTP error status . > >> > > > > Is it possible that the authentication work needs to be done by the HTTP > > server for XmlRpcPlugin to work? > > > [...] > > Yes , of course . When account manager is deployed somehow you have to > specify that RPC requests will have to be touched by some digest auth > handler . That could be one of > > - Server digest auth module ... > - trachacks:HttpAuthPlugin > > Indeed I usually set the match for "^/login/.*" but that's up to you > to decide ... >
Aha! That seemed to have cleared things up a lot for me, thanks! I'll investigate HttpAuthPlugin and, seeing that Python's rpclib doesn't support digest authentication, I'm probably going to switch to SSL + basic authentication anyway. Regards Michael -- You received this message because you are subscribed to the Google Groups "Trac Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/trac-users. For more options, visit https://groups.google.com/groups/opt_out.
