On 9/14/2011 4:36 PM, Richard Hipp wrote:
Fossil honors the REMOTE_USER environment variable in CGI mode, so
you can use Fossil with Basic Auth.
How quickly I forget...
FTR, I'm not suggesting changing fossil's web ui, just suggesting the
HTTP Basic Auth would be the easiest thing for clients of a JSON API.
Seems like this unfortunately means that the JSON API can't be designed
so that a single auth method works for most fossil installs.
Though if the JSON parts also trust the REMOTE_USER (when it's set),
then one could pretty easily have the client follow whatever login
procedure and *also* send the HTTP AUTH info with all requests, and that
should at least make it possible to write a fossil JSON client without
knowing which way a given repo swings.
--
Joshua Paine
LetterBlock: Web Applications Built With Joy
http://letterblock.com/
301-576-1920
_______________________________________________
fossil-users mailing list
fossil-users@lists.fossil-scm.org
http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
