Tobias Luetke wrote:> REMOTE_USER is a http header some browsers send out. Completely
> unreliable. There is no authorization system build into rails because
> its impossible to generalize.
> Instead there is a generator available at
> http://www.rubyonrails.org/show/Generators which should get you
> started.
REMOTE_USER is a CGI environment variable set by the webserver when a
Browser sends an "Authorization" header. I am just requesting Basic
authorization which just about every browser supports. So REMOTE_USER
should be quite reliable unless I am missing something?
Anyway I don''t want all the mess of creating login screens, user
management, session management, etc. I just want my webserver to provide
basic authorization and have my script be able to get that info from the
webserver. REMOTE_USER works fine but since HTTP Auth is part of the
HTTP standard I figured their might be a standard way to get that info
(much like the remote_ip() method on the Request object).
I''ll stick with getting it out of the environment variable for now. :)
Eric
_______________________________________________
Rails mailing list
Rails-1W37MKcQCpIf0INCOvqR/iCwEArCW2h5@public.gmane.org
http://lists.rubyonrails.org/mailman/listinfo/rails