Christian Gilmore wrote:
4. I cannot modify the cookie and should not send additional cookies.
[snip]
about 4. Can I use an unmodified AuthCookie to ensure that whatever format
the inbound cookie is in is sufficient and will not need to be modified or
supplemented? I believe the answer is
: Tuesday, October 22, 2002 2:00 PM
To: Christian Gilmore
Cc: Modperl Mailing List (E-mail)
Subject: Re: AuthCookie questions
Christian Gilmore wrote:
4. I cannot modify the cookie and should not send
additional cookies.
[snip]
about 4. Can I use an unmodified AuthCookie to ensure
Christian Gilmore wrote:
Hi, Michael. Let me try again with more specifics. I'm required to mash my
service into another organization's authentication scheme, ditching my own
secure methods for their cross-domain unencrypted, unsigned cookie.
[...]
On a side note, if anyone finds the proposed
Christian Gilmore wrote:
1. Read data from existing cookie.
1a. Redirect if cookie is non-existent.
2. Accept or reject cookie.
2a. If rejected, redirect.
2b. If accepted, populate environment and return.
Sounds to me like you really dont need AuthCookie at all. You could
just as
check here http://modperl.home.att.net
Peter
- Original Message -
From: Christian Gilmore [EMAIL PROTECTED]
To: 'Michael Schout' [EMAIL PROTECTED]
Cc: 'Modperl Mailing List (E-mail)' [EMAIL PROTECTED]
Sent: Tuesday, October 22, 2002 12:13 PM
Subject: RE: AuthCookie questions
Hi