[Twisted-Python] Re: cred and stateless protocols

Tristan Seligmann mithrandi-twisted-python at mithrandi.za.net
Fri May 5 10:53:54 EDT 2006


* Manlio Perillo <manlio_perillo at libero.it> [2006-05-03 13:20:34 -0200]:

> Ok, but it is improper to require such an authentication for each
> resource... ;-)
> 
> Clients authenticate once and use "sessions" to identify themselves.

Many people are successfully using basic/digest auth without any use of
sessions, and I would hardly call this "improper". In many cases it is
much more straightforward than bolting on stateful session tracking, and
it also potentially makes client implementation simpler.
-- 
mithrandi, i Ainil en-Balandor, a faer Ambar
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://twistedmatrix.com/pipermail/twisted-python/attachments/20060505/577a4c9f/attachment.pgp 


More information about the Twisted-Python mailing list