Too many questions. I am a bit lost. I have a simple client that relies on an HTTP 401 response from the TG server to pop up an authentication box. However, the TG 2.x application automatically returns a login form (instead of a 401 response code). Apparently, some default TG 2.x or default repoze.who config is kicking in. I don't know which one.
Q1) Where can I locate repoze related config in a TG 2.x installation. Q2) If I were to write my own repoze.who plugin(s), I have to provide a who.ini. Does the custom who.ini have to specify config for all repoze functionality? Or can I simply provide entries for override? If I have to provide an entire who.ini (which seems likely), how do I ensure that my who.ini is not missing an item (considering that I am not a repoze expert). Q3) I wrote a challenger_decider plugin, but by the time that plugin is invoked (at egress) the HTTP response code is already set to 302 (redirected to login form). Q4) Should I be implementing a challenger plugin instead? Q5) Should I be implementing a classifier plugin instead (and classify the request as an API-Client (as opposed to browser)) to bypass the friendly-form plugin? Here is my previous (decayed) thread. http://groups.google.com/group/turbogears/browse_thread/thread/749b4cd327868829 Thank you.... -- You received this message because you are subscribed to the Google Groups "TurboGears" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/turbogears?hl=en.
