Two questions: - What happens if/when someone spoofs the IP? - If there are multiple users all coming from the same IP how will you distinguish them when they come back?
If it is just one user and you do not care about the first point, you could probably grab the auth cookie, store it, then when they make a request to your home page reset that cookie if it is not set. Does not sound like a very good idea for production use to me though. Robert On Thu, Sep 23, 2010 at 22:20, chris <[email protected]> wrote: > Hi there > > I'm designing a app that can be used remotely and in the office. > I'm using the google users api to check for valid users. However I > wish to skip this if someone accesses it in the office, all the > computers in the office have the same ip address. > > Is there a way to skip this? > > im using the: > self.request.remote_addr > > to request the ip but can't seem to get around the google login > wrapper. > > Thanks, > > Chris > > -- > You received this message because you are subscribed to the Google Groups > "Google App Engine" group. > To post to this group, send email to [email protected]. > To unsubscribe from this group, send email to > [email protected]. > For more options, visit this group at > http://groups.google.com/group/google-appengine?hl=en. > > -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en.
