From: Christopher M. <chr...@gm...> - 2006-09-09 23:09:39
|
On 9/9/06, Gavin Carr <ga...@op...> wrote: > Note that this isn't quite what I'm asking for Chris. "Pluggable" > authentication implies specific support by the appliation of auth > scheme X. I'm after "external" authentication, meaning you do the auth > at the apache level using any authentication module apache supports, > and SL just accepts the authenticated user as given to it by apache. > There's a place for both, but I'm specifically interested in the > second. The two things that you describe are one and the same. Pluggable authentication means that you create APIs for different authentication mechanisms, so that these mechanisms handle the authentication, and the application trusts it throught the API. 'auth scheme X' in this case is 'Basic HTTP authentication' which will definitely be one of the authentication schemes that we can support. Cheers, Chris |