I'm new to OpenID and developing a web app using web.py. The company using this software uses google apps, so they all have google logins, which from what I understand can be used with OpenID. The site will probably need to be accessible for non-employees outside the google apps domain using their own openid like their gmail or facebook account, I guess.
I found this code below, which seems to provide a very simple example, but I had a few questions about it. http://log.liminastudio.com/programming/howto-use-openid-with-web-py If I understand correctly, a user has to know the URL for their OpenID, like www.google.com/lksdjfljsdjfsljs_whatever. Does that mean the user has to know the url? How do sites like digg let you just click on a provider button? Is there some kind of cookie that's available to the browser to parse the URL if they're already logged in? Also, how do you maintain authentication? In turbogears I'm used to just calling an authentication function at the start of each controller if it's not accessible to the public. Is there something similar? In essence, how do I tell if someone is already logged in? What keeps track of this? >From what I can tell, if you go straight to the Index page in the example, it will start creating that body tag and hit web.webopenid.form('/openid') which builds a login form into the body and returns it. When you submit, it returns to the same Index, but this time this function will let you know if you're still logged in? -- You received this message because you are subscribed to the Google Groups "web.py" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/webpy?hl=en.
