auth

django auth User truncating email field

I am having an issue with the django.contrib.auth User model where the email max_length is 75. I am receiving email addresses that are longer than 75 characters from the facebook api, and I need to (would really like to) store them in the user to continuity among users that are from facebook connect and others. I am able to solve the p...

How to password control access to all urls except one in apache 2

Hi Apache Gurus I want to password protect all urls on my beta site at the moment. Except one url because it is called by flash and flash can't handle basic auth properly it seems. So i want to disable basic auth for that one url. This is my config in apache. Apache is a proxy for tomcat but that should not matter right ? <IfModule mod...

django manage.py test auth fails

When I run the test suite of django I get errors on the auth application. I have (obviously) not written any of auth code and I have not written tests for auth. yet the auth tests fail. Here are some of the errors I get, the whole stacktrace is too big to put here: Does someone has dealt with this before? AttributeError: 'module' objec...

Cake Php auth problem

HI, I have a problem with cake php built in auth - i cannot log in ... 1)user is added through app control pannel and hashed using $this->auth->password('xxx') - i've checked it's corrent in db 2)security salt is not emtpy 3) in action User/Login data['User']['password'] is empty (i don't know if this is correct but i've read t...

How can I use cookies for authentication in CakePHP?

Hi, I am trying to use a cookie that is set by other page in my domain to authenticate the user. Say I have needpassword.example.com written using cakephp, and the cookie is generated by auth.example.com (using a Perl CGI program). To login in to needpassword.example.com, I need to redirect to auth.example.com to set the cookie, and th...

Django single sign on and Php site: cross domain login ?

Hello DJango warriors ! I am building a small app as a service in django and now is the time to integrate it on some clients PHP web app. Our client A from domain www.a.com handles his own authentication for his users and probably use cookies for sessions. How could i make logged in users from his domain also logged in on my Django ap...

How to make some pages not available when a user is logged in

In CakePHP we can use $this->Auth->allow('someMethod'); to make a page viewable without having to login. How do I make some the same page is not viewable when a user is logged in? An example of this would be a register page which we want to be accessible without user logged in ... but not accessible once a user logged in. I put $this->A...

User authentication context persitence when using HttpHandler

I have a Silverlight application. I want to display a PDF report and I created an HttpHandler that will dynamically generate the PDF based on the filename and parameters passed. On my development server, when I authenticate through ASP membership with the Silverlight plugin, the HttpHandler calls within the same session are also authent...

How to deploy authorization between multiple cakephp applications?

I have main site example.com where users can register and login or just login with openid. Logged in users can create their own sites with subdomains like mysite.example.com. Every user can have multiple sites. Every site is cakephp app. Every cake app has its own ACL. How do I deploy authorization so users logged in to the main site, a...

CakePHP: Clearing password field on failed submission

Greetings, I am setting up a pretty standard registration form with password field. The problem is, after a failed submission (due to empty field, incorrect format etc), the controller reloads the registration page, but with the password field containing the hashed value of the previously entered password. How do I make it empty after ...

Django - Losing Auth Session

Hello, I am with some trouble in Django... After login I am losing auth session for some pages. If I access "accounts/login/","accounts/logout/",""accounts/register/" the session always will be there, but if I access different page I cant access the user variable. This is strange because I am using the same "base.html" for all pages ...

cakephp acl aros_acos paradox

Hello, I'm trying to implement an authentication/authorization combo into my cakePHP site using Auth and Acl Components, but something odd is happening with my implementation. I've got the right acos, aros and aros_acos tables, and they seem to work at some level. I have mapped my actions like this: $this->Auth->mapActions(array('rea...

Auto login in CakePHP

Hi. I am using the registration form for different users? After a new user logs in, the registered users should redirect to an after-login page. We are using Auth component for the authentication. How do I do this? ...

CakePHP authentication breaking after an incorrect login

I have a simple login form, username and password. Basically, When a user is anywhere on the website, he can click a link that will take him to the login page. After login, he is redirected to the page he came from initially. The problem: let's say I was in the "/posts" page, and I clicked to login, so now I am on "/users/login". - if...

PHP PEAR Auth session timeout

This issue has been driving me insane. On two separate projects (both of which use PEAR as libraries but are written on completely different custom frameworks) I am using PEAR Auth for authentication which uses the session. After logging in, users are logged out within an hour or so of being idle. I don't have the exact time, but it's v...

Verifying Resftul Authentication through a Non Ruby App

I'm trying to do Authentication against restful_authentication from a php application, however I understand it uses a SHA1(digest--salt--password--RESTFUL_AUTH_KEY). The issue is regardless of how much I try I can't get the hash to match. Reading through the documentation I see the digest is just the restful auth key, but that's where I ...

Django - AttributeError - 'User' object has no attribute 'validate'

I'm getting an AttributeError using rcrowley's django-twitterauth: http://github.com/rcrowley/django-twitterauth Looks like it occurs when the validate() method is called on the user object, which the user object does not have. I don't know why the author did this. I'm really new to Django, wondering if anyone else knows. I know you can...

Problem with Authentication and Cache::write in cakephp

I'm porting application from custom authentication system to cake's Auth. Everything works fine for logged user (even with smaller privileges), but doesn't for non logged users (who are most users of site). I'm managing privileges for them with $this->Auth->allow() in FooController::beforeFilter (but not with AppController::beforeFilter)...

Java HTTP AUTH?

I'm trying to connect a desktop application I am writing with the del.icio.us api @ http://delicious.com/help/api and simply provide them with my username and password and to request an url to post a bookmark to my profile. The problem I have is that I don't understand how to send my login credentials when I open a connection. How woul...

What is the safest algorithm in Kohana's auth module?

I'd prefer to use the crypt function and use blowfish encryption, but the current implementation of this module uses the hash function, which doesn't offer this encryption method. So, what is the safest algorithm in Kohana's auth module? Would SHA-512 be a good option or am I better off modifying the module to use crypt and blowfish? ...