source: mauRepo/dj_security_middleware/trunk/dj_security_middleware/README @ 8655

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/mauRepo/dj_security_middleware/trunk/dj_security_middleware/README@8655
Revision 8655, 1.0 KB checked in by mnagni, 7 years ago (diff)

Share project "dj_security_middleware" into " http://proj.badc.rl.ac.uk/svn/ndg/mauRepo/dj_security_middleware"

Line 
1Adds a layer to interact with a paste enabled, Django based, security service
2typically a dj_security app.
3The dj_security_middleware.middleware.DJ_Security_Middleware checks if the
4HTTP request contains a cookie called 'auth_tkt'. This cookie is set by the
5authentication service using the paste module.
6
7The configuration is quite straigthforward. In your Django app settings.py add:
8
91) 'dj_security_middleware.middleware.DJ_Security_Middleware' to MIDDLEWARE_CLASSES
10
112) DJ_SECURITY_LOGIN_SERVICE to specify where the URL where authentication service
12is listening (say http://my.domain.ac.uk/login)
13
143) DJ_SECURITY_SHAREDSECRET to specify the secret key used by the authentication
15service to encrypt the 'auth_tkt' coookie (say 'sharedsecret')
16
174) DJ_MIDDLEWARE_IP to specify the client machine where the middleware is installed
18(say '123.456.7.8'). The reason for this is that the client machine could be behind
19a proxy and in this case the authentication service uses the remote machine IP,
20the proxy in this case, to encrypt the cookie.
Note: See TracBrowser for help on using the repository browser.