[Twisted-web] [Nevow] new chapter about authentication

Manlio Perillo manlio_perillo at libero.it
Fri Aug 4 03:56:35 CDT 2006

L. Daniel Burr ha scritto:
> On Thu, 03 Aug 2006 17:54:54 -0500, Valentino Volonghi aka Dialtone
> <dialtone at divmod.com> wrote:
> [...]
> If you are like me, and only spend your time building apps on top of
> HTTP, then guard seems hopelessly complicated. 

I agre that guard is complicated.
It took me some times to learn how it works but now it seem simple.

> [...]
> To me, the bottom line is this: If all you are ever going to do is build
> web applications, then you will *never* see any real point in jumping
> through all of cred's hoops (portal, avatar, mind, WTF?  I just want a
> freaking username/password combo, secured by SSL, like almost every other
> web app on Earth!).  

I would like to support authorization based on SSL certificates.
That is, check if the *client* certificate is signed by me.

Of course this is only for the admin area.

Some times ago I have done some tests, without success.
First of all I have to setup the server (I have found some documentation
on this, at low level);
then I have to know how to setup the client (Firefox, and so) to supply
the right certificate when connecting to my site (and here I don't know
what to do, I don't even know if this is possible at all with current

Regards  Manlio Perillo

More information about the Twisted-web mailing list