Re: [Openefm-development] Authentication and Attorney Registration
Brought to you by:
counterjim
Menu
▾
▴
Re: [Openefm-development] Authentication and Attorney Registration
|
From: Jeremiah J. <jer...@go...> - 2005-03-08 18:05:37
|
Now I'm really confused...thanx..:) How does the EFM know that a filing request comes from a legitimate filer ie. some person that the court has okayed?=20 On Tue, 2005-03-08 at 09:49 -0800, Jason Van Cleve wrote: > Quoth Jeremiah Jahn, on Tue, 08 Mar 2005 11:10:59 -0600: >=20 > > What's the standard authentication scheme for the EFP to use with the > > EFM?=20 >=20 > Here again let it be said, there is really no industry standard for this > stuff. We have been using HTTP BASIC, for simplicity. >=20 > > Does the court use the EFM to setup users and then the user take that > > id/password to the EFP and register it? Then does it use that ip/pass >=20 > Yes, if I follow you. >=20 > > pair to insure that a filer is who they say they are? It seems that >=20 > Not the IP, just the login. I could code in an IP check easy enough, > though, for cases where that is static. >=20 > > you need more than just an ID to associate who filed what. If I find >=20 > The EFM user is needed for the EFP to connect to the EFM. The EFP has > users of its own. To which are you referring? Currently our EFM takes > no interest in EFP users. If there is a billing operation to perform, > we take the necessary data from the legal XML, but we do not relate > those data to any "user" entity. >=20 > > out that atty bob's id is 12 and I register with the EFP to use id 12 > > when dealing with a court's EFM all sorts of bad things could happen. > > When I look at the examples and you code, I see no references to the > > actual filer, nor any security to insure they are who they say they > > are...I do see id/pass for the EFP to connect to the EFM, but that > > doesn't seem like enough. What is the general procedure for this stuff > > to work? This also brings up the question of how do PRO SE filers get > > identified/approved with the court?=20 >=20 > I'm glad you're looking closely. Our EFM is fundamentally agnostic.=20 > Accordingly, it doesn't care much for the content of filings, just their > form. The paradigm, I would say, is that if it's good enough for the > clerk reviewing it, it's good enough for the EFM. So to answer your > question, our EFM doesn't authenticate users of the EFP, only the EFP > itself. To OpenEFM, the EFP is the user. >=20 > --Jason >=20 > -- > If you are going through hell, keep going. -- Sir Winston Churchill >=20 >=20 > ------------------------------------------------------- > SF email is sponsored by - The IT Product Guide > Read honest & candid reviews on hundreds of IT Products from real users. > Discover which products truly live up to the hype. Start reading now. > http://ads.osdn.com/?ad_id=3D6595&alloc_id=3D14396&op=3Dclick > _______________________________________________ > Openefm-development mailing list > Ope...@li... > https://lists.sourceforge.net/lists/listinfo/openefm-development A successful [software] tool is one that was used to do something undreamed of by its author. -- S. C. Johnson |
