FWIW in a current project we’ve abandoned the initial oauth based approach for a home-grown SSO solution based on JWT and eight lines of pyramid glue code.
as author of the various consumers of this construct i’m very happy about how straightforward this all turned out to be and will definitely consider using a JWT plus custom AuthenticationPolicy approach again in the future. hope that helps, tom > On 16 Jul 2015, at 21:34, Iain Duncan <[email protected]> wrote: > > Hi folks, just getting back into Pyramid and Python after a long absence of > being an Angular dev. I'm going to be putting together an app stack where we > have multiple separate apps with separate databases but we want a shared auth > system. I think this means I want WSGI Middleware taking care of my auth&auth > so the inner apps just get auth tokens off the wsgi env and use those for > their ACL management. My questions, having been out of the loop for a while, > are: > > - is this still a good way to go? > - should I use repoze.who/what for the wsgi middleware or just a separate app > that imports Pyramids auth guts? > - any comments or gotchas anyone cares to share on the above plan? > > thanks so much! > Iain > > -- > You received this message because you are subscribed to the Google Groups > "pylons-discuss" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected] > <mailto:[email protected]>. > To post to this group, send email to [email protected] > <mailto:[email protected]>. > Visit this group at http://groups.google.com/group/pylons-discuss > <http://groups.google.com/group/pylons-discuss>. > For more options, visit https://groups.google.com/d/optout > <https://groups.google.com/d/optout>. -- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/pylons-discuss. For more options, visit https://groups.google.com/d/optout.
signature.asc
Description: Message signed with OpenPGP using GPGMail
