Thanks villas! This function isn't for the 'whole wide world' but for an other internal application which needs to connect to my web2py application, so for me this isn't a insecure solution.
If you or someone else knows how this can be achieved in 'the' secure way, please let me know! My example i just only a suggestion to make clear what i want. I think that there are a lot more people that are looking for a good solution. Thanks! :-) --
