Authors: | Luke Macken Toshio Kuratomi |
---|---|
Date: | 11 Dec 2009 |
This plugin provides authentication to the Fedora Account System using the repoze.who WSGI middleware. It is designed for use with TurboGears2 but it may be used with any repoze.who using application. Like TurboGears Identity Provider 2, faswho has builtin CSRF protection. This protection is implemented as a second piece of middleware and may be used with other repoze.who authentication schemes.
Setting up authentication against FAS in TurboGears2 is very easy. It requires one change to be made to app/config/app_cfg.py.
This function will take care of registering faswho as the authentication provider, enabling CSRF protection, switching tg.url() to use fedora.tg.tg2utils.url() instead, and allowing the _csrf_token parameter to be given to any URL.
This section needs to be made clearer so that apps like mirrormanager can be ported to use this.