[Twisted-web] [Nevow] new chapter about authentication
Manlio Perillo
manlio_perillo at libero.it
Fri Aug 4 03:56:35 CDT 2006
L. Daniel Burr ha scritto:
> On Thu, 03 Aug 2006 17:54:54 -0500, Valentino Volonghi aka Dialtone
> <dialtone at divmod.com> wrote:
>
> [...]
>
> If you are like me, and only spend your time building apps on top of
> HTTP, then guard seems hopelessly complicated.
I agre that guard is complicated.
It took me some times to learn how it works but now it seem simple.
> [...]
>
> To me, the bottom line is this: If all you are ever going to do is build
> web applications, then you will *never* see any real point in jumping
> through all of cred's hoops (portal, avatar, mind, WTF? I just want a
> freaking username/password combo, secured by SSL, like almost every other
> web app on Earth!).
I would like to support authorization based on SSL certificates.
That is, check if the *client* certificate is signed by me.
Of course this is only for the admin area.
Some times ago I have done some tests, without success.
First of all I have to setup the server (I have found some documentation
on this, at low level);
then I have to know how to setup the client (Firefox, and so) to supply
the right certificate when connecting to my site (and here I don't know
what to do, I don't even know if this is possible at all with current
browser).
Regards Manlio Perillo
More information about the Twisted-web
mailing list