Am 22.03.2010 21:22, schrieb gogoplata: > I am trying to enable http_auth in an application using TG 1.0.9. > According to what can be gleaned from the documentation it is a simple > matter of specifying the following app.cfg parameter: > > identity.source="form,http_auth,visit" > > However, once the setting is enabled, a 403 error code is returned > when attempting to access the app in question.e.g > http://username:passw...@localhost > > Am I missing something basic?
Yes, TG 1.0 can use HTTP authentication data provided by the client in the HTTP headers but it can't send a request to the client to provide them in the first place. You'll need TG 1.1 for that. Also, AFIACS the you can't use HTTP auth together with form based authentication. Alas, it seems that the necessary configuration setting to enable HTTP authentication is not mentioned in the documentation on the wiki yet. You can have a look at the souce. http://trac.turbogears.org/browser/branches/1.1/turbogears/identity/exceptions.py#L106 It is also explained in the comments of the "app.cfg" configuration file of a quickstart project. See the changelog for TG 1.1: http://trac.turbogears.org/wiki/ChangeLog#Features2 Chris -- You received this message because you are subscribed to the Google Groups "TurboGears" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/turbogears?hl=en.
