I think this is a great direction to go. Not having to deal with all the session management issues that come with distributive systems has made my life a lot easier. For my most recent project, I used JSON Web Tokens for handing the authorization and authentication of user requests. There is a decent plugin implemented for Pyramid ( https://github.com/ajkavanagh/pyramid_jwtauth) which works well with Pyramid's auth "guts".
-Vincent On Thu, Jul 16, 2015 at 12:34 PM, Iain Duncan <[email protected]> wrote: > Hi folks, just getting back into Pyramid and Python after a long absence > of being an Angular dev. I'm going to be putting together an app stack > where we have multiple separate apps with separate databases but we want a > shared auth system. I think this means I want WSGI Middleware taking care > of my auth&auth so the inner apps just get auth tokens off the wsgi env and > use those for their ACL management. My questions, having been out of the > loop for a while, are: > > - is this still a good way to go? > - should I use repoze.who/what for the wsgi middleware or just a separate > app that imports Pyramids auth guts? > - any comments or gotchas anyone cares to share on the above plan? > > thanks so much! > Iain > > -- > You received this message because you are subscribed to the Google Groups > "pylons-discuss" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > Visit this group at http://groups.google.com/group/pylons-discuss. > For more options, visit https://groups.google.com/d/optout. > -- Vincent Catalano Software Engineer and Web Developer, (520).603.8944 -- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/pylons-discuss. For more options, visit https://groups.google.com/d/optout.
