Dear all,
this is to let you our intention to drop support for Apache users/groups
for the release 1.0 of Invenio (i.e. to drop native authentication
support based on Apache like credential stored in the file pointed out
by the CFG_APACHE_PASSWORD_FILE config variable, and to drop accordingly
native authorization support based on Apache like groups stored in the
file pointed out by the CFG_APACHE_GROUP_FILE).
This old method of authentication/authorization based on HTTP basic is
currently making the Invenio code much more complex than it should, due
to the very different type of workflow this method requires when
compared with local/external accounts.
All the features available by using Apache like users and groups can be
reimplemented by using local/external accounts and local/external
groups. Moreover using local (or external) accounts make it easier to
administrate credentials, since it lets the final user to choose his own
password.
An automatic migration kit might be written to aid such transition.
If anybody is seriously concerned by dropping the Apache-like
users/groups feature, please let us know, and we can check together the
given use-case.
Cheers!
Samuele
--
Samuele Kaplun
Invenio Developer ** <http://invenio-software.org/>
