Account Options

  1. Sign in
The old Google Groups will be going away soon, but your browser is incompatible with the new version.
Google Groups Home
« Groups Home
pylons-discuss
Home
+ new post
About this group
Join this group
Message from discussion Problems with AuthKit (was: Django or Pylons - comparison details)
The group you are posting to is a Usenet group. Messages posted to this group will make your email address visible to anyone on the Internet.
Your reply message has not been sent.
Your post was successful
 
From:
To:
Cc:
Followup To:
Add Cc | Add Followup-to | Edit Subject
Subject:
Validation:
For verification purposes please type the characters you see in the picture below or the numbers you hear by clicking the accessibility icon. Listen and type the numbers you hear
 
James Gardner  
View profile  
 More options Dec 10 2008, 12:05 pm
From: James Gardner <ja...@pythonweb.org>
Date: Wed, 10 Dec 2008 09:05:55 -0800 (PST)
Local: Wed, Dec 10 2008 12:05 pm
Subject: Re: Problems with AuthKit (was: Django or Pylons - comparison details)
Print | View thread | Show original | Report this message | Find messages by this author
Hi Raul,

Just to add to what Dalius has said...

> > a) the author or authkit is never around

I am occasionally ;-)

> > b) authkit is way over complicated

Agreed, but authentication and authorisation *is* complicated and
there are lots of different use cases.

> > c) autukit sucks in other ways
> > d) all of the above.

???

> This is unfortunately very true. I looked at AuthKit for possible
> inclusion in a project of mine, but it's complicated in areas it
> doesn't need to be, very basic in other areas, and not very flexible.
> In the end I wrote my own authorisation and authentication system.

AuthKit tries to be a flexible basis for your own system. Sometimes it
is easier to create your own system than to base it on AuthKit, I
don't have a problem with that.

> These are the things I wanted in my auth+auth system:
> - Customisable table names
> - Users, Roles and Permissions
> - Hide/show menu items pulled from the DB, based on permissions
> - Enable/disable links, based on permissions
> - Hide/show sections of pages, based on permissions
> - User access to pages/methods, based on permissions
> - Fairly simple access checking

AuthKit can help with all these things apart from Customisable table
names but it doesn't provide a GUI admin system which seems to be what
you are after?

> I haven't gotten the "access to pages/methods" going yet (not 100%
> sure how to implement it yet), but I have the rest of the stuff
> working.

> Some of the reasons why I couldn't use AuthKit:
> - Users/Groups far too limited (no "permissions")
> - No way to show/hide page elements based on permissions
> - No way to show/hide menu items pulled from the DB based on permissions
> - Too rigid

That's not really true is it? Have you seen this:
http://authkit.org/svn/AuthKit/trunk/authkit/permissions.py

There are permissions for all sorts of things to do with roles,
groups, IP addresses, time of day etc etc. The permissions system is
designed in such a way that you can create your own permissions too if
the defaults don't fit your needs.

% if authorized(RemoteUser()):
    <a href="/signed_in">Click here</a>.
% else:
    <a href="/not_signed_in">Click here</a>.

Good luck with your implementation anyway.

Cheers,

James


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy
©2013 Google