On Sun, 2010-01-10 at 17:49:12 +0000, Gustavo Narea wrote: > Hello, Justin. > > It seems like you're configuring repoze.what and repoze.who via > repoze.what- quickstart [1]. > > That package configures authentication (i.e., repoze.who) so that the > cookies are handled by the AuthTktCookiePlugin [2], but that > repoze.who identifier plugin doesn't allow specifying that (yet).
I'm not sure if OP needs login session expiration, but if he does,
AuthTktCookiePlugin in latest repoze.who already supports that giving
timeout and reissue_timeout arguments to its constructor method or
make_plugin factory function. It looks like AuthTktCookiePlugin docs
are not up to date on the website ("Last updated on Jan 23, 2009."),
also there's no way to set these arguments via repoze.what-quickstart.
I think quite a few people would find that handy, although there's
always a way to bypass quickstart and configure repoze.what by yourself
(quickstart code could be used as example, it's not hard to understand).
As for "remember me" functionality, OP is left to implement it himself
or wait for someone to do that for him.
> So there are two options:
> 1.- Request this feature on <http://bugs.repoze.org/>. Chances are if
> you provide a patch, it'll get a applied and a new release will be
> done very soon. Then I'll update repoze.what-quickstart so you can
> pass this argument to AuthTktCookiePlugin.
> 2.- You use your own AuthTktCookiePlugin-based identifier. But then
> you will have to configure repoze.who/what manually, without
> repoze.what-quickstart.
>
> I would go for option 1.
--
Audrius Kažukauskas
pgp6SpLfJnzyJ.pgp
Description: PGP signature
