On Nov 28, 9:40 am, olivier <odema...@gmail.com> wrote: > I am using web2py build-in server for development and basic http auth > works fine! > However, when pushing the code on my server (on which my provider > propose to use wsgi...) it is not working anymore. :-( > On the server, I checked the "request.env", "http_authorization" is > indeed missing. > > I confess I am a fcgi/wsgi ignorant ;-) Any help on that side? > Is anyone using basic http authorization?
Read the mod_wsgi documentation. Specifically the FAQ: http://code.google.com/p/modwsgi/wiki/FrequentlyAskedQuestions#Access_Control_Mechanisms where it says: Q: Why are client user credentials not being passed through to the WSGI application in the 'HTTP_AUTHORIZATION' variable of the WSGI environment? A: User credentials are not passed by default as doing so is insecure and could expose a users password to WSGI applications which shouldn't be permitted to see it. Such a situation might occur within a corporate setting where HTTP authentication mechanisms were used to control access to a corporate web server but it was possible for users to provide their own web pages. The last thing a system administator will want is normal users being able to see other users passwords. As a result, the passing of HTTP authentication credentials must be explicitly enabled by the web server administrator. This can only be done using directives placed in the main Apache confguration file. For further information see Access Control Mechanisms and the documentation for the WSGIPassAuthorization directive within the Configuration Directives documentation. Also read the documents referenced in that section. Namely: http://code.google.com/p/modwsgi/wiki/AccessControlMechanisms Graham -- You received this message because you are subscribed to the Google Groups "web2py-users" group. To post to this group, send email to web...@googlegroups.com. To unsubscribe from this group, send email to web2py+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/web2py?hl=en.
