Re: Basic Auth REST = Blackhole
Try setting security level to low. If that works your session is probably being reset do to the Host name at the PHP level from the setting session.referer_check which is set for both medium and high security levels. On Mar 21, 12:25 pm, SonnyBurnette schuch...@gmail.com wrote: I am trying to add a few light restful API methods to my app. In order to secure this, I plan to use basic auth with SSL. The problem I have now is the security component wants to blackhole the POSTed data since I enabled the security component for basic auth. What do I need to do to keep these methods secure and allow the data from a remote client to be added? Check out the new CakePHP Questions site http://cakeqs.org and help others with their CakePHP related questions. You received this message because you are subscribed to the Google Groups CakePHP group. To post to this group, send email to cake-php@googlegroups.com To unsubscribe from this group, send email to cake-php+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php?hl=en To unsubscribe from this group, send email to cake-php+unsubscribegooglegroups.com or reply to this email with the words REMOVE ME as the subject.
Re: Basic Auth REST = Blackhole
The other potential problem is with the Security Component the Posted data needs to match what was sent out to the browser as the form data. When a from is created with Security Component enabled, the form creates a hidden field with a hashed data. This is checked on the post and black holed if it doesn't match. Since your posting via REST you probably don't even have the hashed data field in the posted data. I'm not sure exactly how to get around this or if the Security Component is aware the Post is a Restful post to do different logic. http://book.cakephp.org/view/175/Security-Component Not sure exactly why you think you Need the Security Component for Basic Auth. Basic Auth is available from the 'Auth' Component. I don't think you need both to accomplish your end goal of a Secure Rest service. Check out the new CakePHP Questions site http://cakeqs.org and help others with their CakePHP related questions. You received this message because you are subscribed to the Google Groups CakePHP group. To post to this group, send email to cake-php@googlegroups.com To unsubscribe from this group, send email to cake-php+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php?hl=en To unsubscribe from this group, send email to cake-php+unsubscribegooglegroups.com or reply to this email with the words REMOVE ME as the subject.
Basic Auth REST = Blackhole
I am trying to add a few light restful API methods to my app. In order to secure this, I plan to use basic auth with SSL. The problem I have now is the security component wants to blackhole the POSTed data since I enabled the security component for basic auth. What do I need to do to keep these methods secure and allow the data from a remote client to be added? Check out the new CakePHP Questions site http://cakeqs.org and help others with their CakePHP related questions. You received this message because you are subscribed to the Google Groups CakePHP group. To post to this group, send email to cake-php@googlegroups.com To unsubscribe from this group, send email to cake-php+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php?hl=en To unsubscribe from this group, send email to cake-php+unsubscribegooglegroups.com or reply to this email with the words REMOVE ME as the subject.
