LDAP Authentication
45 views
Skip to first unread message
Jay T
Jul 20, 2011, 3:11:05 PM7/20/11
to pylons-...@googlegroups.com
We are starting to write a new application in Pyramid and having spent
some time reading the documentation available on your website, I have
some questions regarding Authentication:
Pyramid offers few ways of performing Authentication (out of the box) and also provides the capability to write a custom Authentication policy by implementing the IAuthenticationPolicy interface.
The question I have is can I rely on repoze.who's authentication and integrate it within pyramid ?
I have also looked at pyramid_who package which implements IAuthenticationPolicy using repoze.who. However, does this package work in conjunction with repoze.who plugins ?
I am interested in using the repoze.who.ldap plugin to perform ldap based authentication. Is it possible to use pyramid.who package to do that ?
If not, can I install repoze.who and rely entirely on it effectively bypassing Pyramid's authentication ?
Your feedback is greatly appreciated.
Thanks,
Jay
Pyramid offers few ways of performing Authentication (out of the box) and also provides the capability to write a custom Authentication policy by implementing the IAuthenticationPolicy interface.
The question I have is can I rely on repoze.who's authentication and integrate it within pyramid ?
I have also looked at pyramid_who package which implements IAuthenticationPolicy using repoze.who. However, does this package work in conjunction with repoze.who plugins ?
I am interested in using the repoze.who.ldap plugin to perform ldap based authentication. Is it possible to use pyramid.who package to do that ?
If not, can I install repoze.who and rely entirely on it effectively bypassing Pyramid's authentication ?
Your feedback is greatly appreciated.
Thanks,
Jay
Mike Orr
Jul 22, 2011, 3:15:24 PM7/22/11
to pylons-...@googlegroups.com
Well, I'll be looking at that later this year when I port my Pylons
app with a hybrid LDAP+local db users, but I don't have any comment at
this point. I'll consider either repoze.who connected to Pyramid's
auth, or a custom authenticator if that's too messy. I'd have to write
a custom module for repoze.who in any case, and I'm not sure going
through Who's API would be worth the effort. On the other hand, I'
would like to use Who's automatic fallback to Authorized headers
instead of forms for non-interactive user agents.
--
Mike Orr <slugg...@gmail.com>
pipoun
Mar 8, 2012, 12:56:49 PM3/8/12
to pylons-...@googlegroups.com
Sorry to unearth an old thread, but as I was looking for the same answers without success, I'll post my researches here:
- pyramid_who is using repoze.who v2
- repoze.who.plugins.ldap is using repoze.who v1
- repoze.who.plugins.ldap is no longer maintained ( for two years )
So I fear it's a dead end...
Is there an other package pluggable in pyramid for ldap authentication?
If I write my own one, (taking code from who ldap), what would be the best way to integrated it in pyramid?
Thanks!
Reply all
Reply to author
Forward
0 new messages