Hey, 2009/9/3 Adrian Sutherland <[email protected]>: > My *personal* view is that I would only have the constructor create > what was needed for the logon screen. After logon you can delete/hide > the logon fields and create the real start page. > > Feels safer (although probably only feels), and depending on the > resources needed for your real start page may use less resources on > the server as you wont need to create unused widgets etc. for sessions > that never logon.
I would agree with this approach too (not for safety, Wt will not accept any interaction with widgets not displayed), but for resource usage. Depending on your target deployment, you could also consider to have a simple HTML page sitting in front of the web application that provides the login screen en POSTs the first request to your web application, then you can perform authentication before creating your session. The benefit is that only authorized users will consume any sessions. You can obtain parameters from the WEnvironment object. We also find that some customers have an authentication scheme that sits between the Internet and the application, acting like a reverse proxy, which does authentication based on LDAP or OpenID or another system. That is similar to the simple HTML page. > So far as confirmation is concerned - I suggest a standalone CGI > program which accepts the http get request - and (presumably) checks > and updates the accounts table. You can as well encode the confirmation as a query parameter to your application. Regards, koen ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ witty-interest mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/witty-interest
