[Tilecache] Tilecache Authentication
Attila Csipa
plists at prometheus.org.yu
Thu Jan 17 07:02:15 EST 2008
On Thursday 17 January 2008 11:29:43 Gissur Þórhallsson wrote:
> But what about Digest Authentication? Make the user log in to access the
> client and then set up digest authentication schemes between the client and
> the data server(s), you could then define your own timeout schemes if need
> be.
Are you referring to tilecache as the client ? Or the web app the user is
using to access tiles through tilecache ? It's pretty easy to set things up
if everything is just on one domain - the problems arise when there are
multiple domains in play (a quite common scenario in OL, I think), even if
those are on a single server. Unfortunately IIRC digest auth won't help you
there, unless you are doing the whole HTTP authentication process within
tilecache, which I would advise against. And even then, if you really ARE
load balancing amoung multiple servers, how will you notify tilecaches on
other servers that the user has actually authenticated on a front end in a
secure and reliable way ?
More information about the Tilecache
mailing list