I've also been researching how to do this using Paypal.
I first looked at these Python projects:
http://code.google.com/p/pypaypal/
http://python.pastebin.com/f782d48d9
http://www.web2py.com/appliances/default/show/28
But they are all incomplete and warn not to be used in production.
Now I am l
Massimo or anyone familiar with app engine, i am beginning development
with bot app engine and web2py and have reviewed much of the google io
videos especially those by bret slatkin regarding how to work with the
app engine datastore properly. I hope but am guessing it is probably
not the case tha
hmac with MD5 digest is the default but choosing a different one is
recommended as it has known weaknesses.
On Sep 29, 9:05 pm, mengu wrote:
> in the meanwhile, how web2py hashes the passwords? just plain md5?
--~--~-~--~~~---~--~~
You received this message becaus
I'll share my implementation once done. Thanks for the help.
On Sep 29, 9:08 pm, mdipierro wrote:
> You are right and I like this. You are assuming the server does not
> store the password already hashed. I was not assuming that.
>
> On Sep 29, 8:10 pm, "mr.freeze" wrote:
>
> > Perhaps I misun
You are right and I like this. You are assuming the server does not
store the password already hashed. I was not assuming that.
On Sep 29, 8:10 pm, "mr.freeze" wrote:
> Perhaps I misunderstand. Here is my plan: When the login page is
> requested, the server will generate a random token, store
in the meanwhile, how web2py hashes the passwords? just plain md5?
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
"web2py-users" group.
To post to this group, send email to web2py@googlegroups.com
To unsubscribe from
Perhaps I misunderstand. Here is my plan: When the login page is
requested, the server will generate a random token, store it somewhere
(session most likely) and send it to the client. The user then enters
their password which is hashed using the jQuery plugin. The hashed
password is concatena
Basic concepts in digital identity are message integrity, non-
repudiation, and confidentiality.
The point using SSH/HTTPS is that it performs a key exchange using
public key encryption and that critical to confidentiality (the
password and information cannot be stolen in transit). Public key
all
I'm still using sqlite and I'm hoping that it will do. I'll note the
advice for the connection pooling should I move off of sqlite.
My question was whether there was a parameter/attribute that I could
set in the request object to use to select which tables I declare for
a particular request. I ha
I'm going to try this:
http://plugins.jquery.com/project/sha256
On Sep 29, 6:18 pm, mdipierro wrote:
> If not running over http session.secure() will prevent sessions from
> working and login will not work.
>
> hashing with a salt can easily be attacked.
>
> Massimo
>
> On Sep 29, 6:11 pm, "mr.f
I'm still using sqlite and I'm hoping that it will do. I'll note the
advice for the connection pooling should I move off of sqlite.
My question was whether there was a parameter/attribute that I could
set in the request object to use to select which tables I declare for
a particular request. I ha
If not running over http session.secure() will prevent sessions from
working and login will not work.
hashing with a salt can easily be attacked.
Massimo
On Sep 29, 6:11 pm, "mr.freeze" wrote:
> Reddit seems to send a clear text password but Digg and a few others
> seem to be hashing on the cl
Reddit seems to send a clear text password but Digg and a few others
seem to be hashing on the client using a token salt before sending.
I'm too cheap to pay for a unique IP and SSL so I will try that
first.
Question: Does session.secure do anything useful when *not* running
over https?
On Sep 2
I did not notice and that is bad.
If your app uses authentication you should have
session.secure()
and use HTTPS. The latter line will not accept sessions cookies
without HTTPS.
Massimo
On Sep 29, 4:28 pm, "mr.freeze" wrote:
> What are sites like reddit.com doing to secure their logins?
What are sites like reddit.com doing to secure their logins?
Anything? The login request goes over http according to firebug. I'm
just wondering if my wiki site needs https for login or http is
acceptable or if there is another trick I can use.
Thanks!
Nathan
--~--~-~--~~---
In my view they are Postgresql and sqlite.
MySQL is supported well but the databse itself has issues like the max
size of text fields and cannot do multicolumn migrations per
transactions.
MSSQL and Oracle cannot do pagination (not a web2py issue). web2py
tries to go around the limitation but it
Hello mate,
I have a simple question,
Since i start working with Web2py I'm using MySql as back-end which is
good and running perfectly... I'm still looking for room to improve
and wondering about what back-end suit best with Web2py: It is GAE ?
Oracle ? MySql ?
Thanks for letting me know what y
I notice the link is not very clear. The source is here:
http://mdp.cti.depaul.edu/appliances/default/show/43
On Sep 29, 2:20 pm, mdipierro wrote:
> If you use web2py you can easily use google checkout. You can try it
> and get the code here:
>
> http://web2py.appspot.com/plugin_checkout/defaul
If you use web2py you can easily use google checkout. You can try it
and get the code here:
http://web2py.appspot.com/plugin_checkout/default/checkout
Massimo
On Sep 29, 11:42 am, Sophie wrote:
> Hi, i have to pay on-line with a credit card in my system. If there is
> some manual or you could
I have to interact with a framework
2009/9/29 Yannick
>
> Hello do you want to create your own online pay system or incorporate
> an existing service that does the job for you ? If yes you can take a
> look at the Paypal API for example, you will have a better idea of own
> to incorporate it in
Hello do you want to create your own online pay system or incorporate
an existing service that does the job for you ? If yes you can take a
look at the Paypal API for example, you will have a better idea of own
to incorporate it in your app...https://developer.paypal.com/
You should create an acco
Hi, i have to pay on-line with a credit card in my system. If there is
some manual or you could explain me how can i do this i will
appreciate it so much. thanks
Sophie
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
Thanks for all your help. As you can see I am having understanding the
commands although I can understand some sql and older python.
Again thanks,
Jim
On Sep 29, 9:22 am, "mr.freeze" wrote:
> Try this then:
>
> {{for person in db().select(db.person.ALL):}}
> {{=person.first_name}} {{=person.
Oh yeah you are right Jonathan... Usually I always download the web2py
source file but for some reason since it's my first time to play
around with Web2py ON iMAC i download the web2py mac version...
hehe... thanks for pointing that out... Maybe it would be worth
mentioning it in this document: h
Because model are re-read at every request, modules are not.
I am not sure if this is a big effect since the code has to be
executed anyway. Just worth a try.
@rb, one more thing. Make sure you use connection pooling if you do
not use sqlite.
On Sep 29, 9:55 am, Jonathan Lundell wrote:
> On S
every request maps to your application/controller/function - for each
request, all models are read prior to the selected controller call.
Theoretically, reducing the number of files read in should speed things up -
BUT the reality of the speedup is probably not what you might expect;
models to not
Try this then:
{{for person in db().select(db.person.ALL):}}
{{=person.first_name}} {{=person.last_name}}
{{for event in person.events.select():}}
{{=event.description}}
{{pass}}
{{pass}}
Beyond that, I would check your data in the db through appadmin and
verify that it is co
On Sep 29, 2009, at 7:36 AM, Yannick wrote:
>
> Thanks for the note...
> The real problem is on mac I don't see any "gluon" directory ?? I
> download the mac version of Web2py, I don't see any 'gluon' directory
> from Wing IDE after importing the root web2py directory on the
> setting...
> here a
On Sep 29, 2009, at 7:03 AM, mdipierro wrote:
> If you still need more speed move the table definitions in a module
> (not a model) and import it from the model. I would not recommend this
> to everybody but 93 is a lot.
How does that speed things up? (Just curious.)
--~--~-~--~~---
On Sep 29, 2009, at 7:04 AM, mdipierro wrote:
>
> You can try add gluon to the pythonpath or move it in a folder already
> in the python path.
I think that WingIDE puts the project's initial directory in sys.path.
It seems a little odd that Wing is finding web2py.py, though, and not
gluon, s
Thanks for the note...
The real problem is on mac I don't see any "gluon" directory ?? I
download the mac version of Web2py, I don't see any 'gluon' directory
from Wing IDE after importing the root web2py directory on the
setting...
here are the main directory that I can see from the IDE under "..
The month on the right is the attribute of a date/datetime object. GAE
supports it.
The month on the left is a web2py API that maps into an operator in
the query. GAE does not allow datetime manipulations in queries
therefore web2py cannot map that API.
Massimo
On Sep 29, 7:50 am, Renato-ES wr
love your username. ;-)
On Sep 29, 7:37 am, Web2py-SuperFan wrote:
> OK thanks,
>
> I think this was my bad. sorry. Looks like it is working like it
> should. I think I had copied the wrong content to the body of my new
> page and it looked like I was being redirected to login always, when
>
You must use the source version to deply on GAE. The binary
distribution comtain bytecode compiled modules and they are not
compatible with GAE. For this reason there is no yaml files.
On Sep 29, 7:33 am, Web2py-SuperFan wrote:
> I am trying to deploy a test to gae. out of the box on the web2py
Yes but how depends on details.
If you are calling an action that @auth.requires_login() as a service,
it takes basic auth information from the header if there.
If instead you are accessing the action/page from a browser it will
not return HTTP 401 Authentication required, instead web2py itself
I do not understand. forms have fields with have validators which are
executed automatically.
If you have a variable "a" and you want to apply a validator to it you
can
(b,error)=IS_INT_IN_RANGE(0,100)(a)
where (b, error) == (int(a), None) if a passes or (b, error)==
(a,"error message") otherwi
You can try add gluon to the pythonpath or move it in a folder already
in the python path.
On Sep 29, 1:21 am, Jonathan Lundell wrote:
> On Sep 28, 2009, at 6:39 PM, Yannick wrote:
>
> > Does anyone use Wing IDE on a Mac machine with Web2py installed
> > If yes can you please let me know ho
You can put if statements in the model file and so you define only
those you need depending on conditions (for example the requested
action). You should definitively set migrate=False and bytecode
compile you app, it will make it much faster.
If you still need more speed move the table definition
Massimo,
The GAE doesn't support the ".month()" on the left, on the right or
both?
Thanks.
On Sep 28, 10:11 am, mdipierro wrote:
> should be
>
> (db.nieuws.publicatie_datum.month()=request.now.month)
>
> because on the right side you have a value [no ()], on the left side
> you have an express
OK thanks,
I think this was my bad. sorry. Looks like it is working like it
should. I think I had copied the wrong content to the body of my new
page and it looked like I was being redirected to login always, when
In fact, it was the desired page, just wrong content in the view.
On Sep 28, 5:
I am trying to deploy a test to gae. out of the box on the web2py
9/28 release, I created a testlogin app. I launched google app engine
launcher, browsed to C:\Users\mark\Documents\_web2py9_28\web2py_win
(2)\web2py and choose ok in launcher.
it errors with message
does not appear to be an appli
David,
You're right, the line of code should read like:
month=request.args[1]
In the view I have:
News {{=month}}
which for August results in:
News August_2009
Is there a way to get rid of the underscore? It's introduced because
the link:
{{=A(month.maand,_href=URL(r=request,args=
[mo
The second argument can be retrieved by request.args[1] I quess.
On Sep 29, 11:42 am, annet wrote:
> In a view I have the following code:
>
>
> {{for month in months:}}
>
>
> {{=A(month.maand,_href=URL(r=request,args=
> [month.nummer,month.maand]))}}
>
>
> {
In a view I have the following code:
{{for month in months:}}
{{=A(month.maand,_href=URL(r=request,args=
[month.nummer,month.maand]))}}
{{pass}}
Part of the controller reads like:
if request.args:
news=db((db.nieuws.publicatie_datum.month()==request.ar
i would like to setup an authenticated API for my web2py project.
how could i use a custom login_methods to authenticate user through
basic http authentication?
it seems that 'login_bare' doesn't use auth.settings.login_methods?
thanks!
--~--~-~--~~~---~--~~
You re
Hi,
Can i use error_message() in the Controller to validate field data? I
think i saw somewhere this process. Thanks
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
"web2py-users" group.
To post to this group, send e
46 matches
Mail list logo
