Re: Nevow: Authenticated site with "remember me" and vhosts
Matt Goodall <matt <at> pollenation.net>
2004-11-04 22:47:01 GMT
On Sat, 2004-10-30 at 12:26 -0400, Donovan Preston wrote:
> On Oct 30, 2004, at 11:03 AM, Paul Moore wrote:
> > 2. I'd like to add a "remember me" checkbox, which if checked sets a
> > cookie to remember the user's ID, so that they don't have to log
> > in again for (say) 2 weeks. Much like gmail, or Yahoo, do. But I'm
> > not too sure how I'd go about this. I'm not even sure where I'd
> > *put* auto-login code: the page is too late (the guard has done
> > its thing by then) but anything else seems to be too early (ie,
> > not per-session, if you see what I mean). I suspect I need to
> > subclass the Portal, or something, but I'm not sure...
> I'm not sure guard is sufficiently flexible to allow this. Perhaps one
> of the guard replacements that is being worked on will help? mg, can
> you comment? Also, indigo, can you comment on the session system you
> wrote and/or perhaps turn it into an example or a module?
Hmm, I don't think there's any way of handling cookie logins right now
except maybe redirecting to the __login__ URL with the username and
password as query params. But yuck!
One of the problems with guard is that there is no API exposed. It might
be nice if guard remembered an IGuard interface for application code to
use. What that would look like and how it would behave is something I
have not considered.
> > I've scanned the various examples, both in the distribution and in
> > the Nevow sandbox, but nothing seems to do what I want. Can anyone
> > give me some pointers?