-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 11/15/2010 12:42 PM, cornelius wrote: > Dear list, > > I am trying to do dual authentication. I am using repoze-who with > pylons. (Due to my distribtion version 1.0.18 of repoze-who). > I'd like to do form authentication when accessing a url with a browser > and basic auth (or rather I'd use digest auth) when accessing with a API > client. > > I followed the only description I could find by Chris Miles. It worked > out fine so far. > > But I am serving my application through apache using mod_wsgi. AND I am > using https, and unfortunately the basicauth.py plugin does not work for > https. > The 'HTTP_AUTHORIZATION': 'Basic hjksjhudsiuz', > is not contained in the environ dictionary. > > Do you got any ideas for using https or even digest auth? > > I suspect I would have to write my own plugin for this (which would be > ok for me, too)
You need to tell mod_wsgi to include the auth headers: http://code.google.com/p/modwsgi/wiki/ConfigurationDirectives#WSGIPassAuthorization Tres. - -- =================================================================== Tres Seaver +1 540-429-0999 tsea...@palladion.com Palladion Software "Excellence by Design" http://palladion.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkzhctgACgkQ+gerLs4ltQ6vGwCeITH0D8emYJRe4aR62GZqGqlG YlcAoK1j/6wSMTbOc/8eNOO23cYxFRep =tY0f -----END PGP SIGNATURE----- _______________________________________________ Repoze-dev mailing list Repoze-dev@lists.repoze.org http://lists.repoze.org/listinfo/repoze-dev