Author: chabotc
Date: Sat Nov 8 11:27:10 2008
New Revision: 712425
URL: http://svn.apache.org/viewvc?rev=712425&view=rev
Log:
New configuration key: allow_anonymous_token. If set to true, read access is
always allowed in the REST API, if set to false, the remote party needs either
a security token or authenticate through oauth
Modified:
incubator/shindig/trunk/php/config/container.php
Modified: incubator/shindig/trunk/php/config/container.php
URL:
http://svn.apache.org/viewvc/incubator/shindig/trunk/php/config/container.php?rev=712425&r1=712424&r2=712425&view=diff
==============================================================================
--- incubator/shindig/trunk/php/config/container.php (original)
+++ incubator/shindig/trunk/php/config/container.php Sat Nov 8 11:27:10 2008
@@ -56,7 +56,11 @@
// The X-XRDS-Location value for your implementing container, if any,
see http://code.google.com/p/partuza/source/browse/trunk/Library/XRDS.php for
an example
'xrds_location' => '',
-
+
+ // Allow anonymous (READ) access to the profile information? (aka REST
and JSON-RPC interfaces)
+ // setting this to false means you have to be authenticated through
OAuth to read the data
+ 'allow_anonymous_token' => true,
+
// The encryption keys for encrypting the security token, and the
expiration of it. Make sure these match the keys used in your container/site
'token_cipher_key' => 'INSECURE_DEFAULT_KEY',
'token_hmac_key' => 'INSECURE_DEFAULT_KEY',
