HTTPAuthenticationChallenge missing

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
6 messages Options
Reply | Threaded
Open this post in threaded view
|

HTTPAuthenticationChallenge missing

Stefan Schmiedl
Resource>>unauthorizedResponse references
Swazoo.HTTPAuthenticationChallenge, which is not defined anywhere.

Is HTTP authentication supported? Is there any external mechanism to
define off-limit areas similar to apache's htaccess files?

Thanks,
s.

-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Swazoo-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/swazoo-devel
Reply | Threaded
Open this post in threaded view
|

Re: HTTPAuthenticationChallenge missing

Janko Mivšek
Stefan Schmiedl wrote:
> Resource>>unauthorizedResponse references
> Swazoo.HTTPAuthenticationChallenge, which is not defined anywhere.
>
> Is HTTP authentication supported? Is there any external mechanism to
> define off-limit areas similar to apache's htaccess files?

HTTP Authentication was supported in Swazoo 1 while in 2 was not ported
to new request framework. But because we will go soon back to old
request framework (due to license matters), authentication will be back
soon as well.

FileResource is a resource for access to files but no, it doesn't have
any mechanism to limit file access.

Janko


--
Janko Mivšek
AIDA/Web
Smalltalk Web Application Server
http://www.aidaweb.si

-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Swazoo-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/swazoo-devel
Reply | Threaded
Open this post in threaded view
|

Re: HTTPAuthenticationChallenge missing

Stefan Schmiedl
On Sun, 23 Nov 2008 16:19:50 +0100
Janko Mivšek <[hidden email]> wrote:

> Stefan Schmiedl wrote:
> > Resource>>unauthorizedResponse references
> > Swazoo.HTTPAuthenticationChallenge, which is not defined anywhere.
> >
> > Is HTTP authentication supported? Is there any external mechanism to
> > define off-limit areas similar to apache's htaccess files?
>
> HTTP Authentication was supported in Swazoo 1 while in 2 was not
> ported to new request framework. But because we will go soon back to
> old request framework (due to license matters), authentication will
> be back soon as well.

Do I smell a long-burning feud here?

I dimly remember a somewhat more than lukewarm message exchange
between you and Bruce, I do hope that I do not rekindle it by poking into
a "sensitive area".

So I'm now asking from a strictly technical point of view:

What are the differences between Swazoo 1 and 2?

How does Bruce's Hyper library fit into Swazoo?
Which parts of "plain" Swazoo would be replaced by it? How?

Thanks,
s.

-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Swazoo-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/swazoo-devel
Reply | Threaded
Open this post in threaded view
|

Re: HTTPAuthenticationChallenge missing

Janko Mivšek
Stefan Schmiedl wrote:

>>> Is HTTP authentication supported? Is there any external mechanism to
>>> define off-limit areas similar to apache's htaccess files?
>> HTTP Authentication was supported in Swazoo 1 while in 2 was not
>> ported to new request framework. But because we will go soon back to
>> old request framework (due to license matters), authentication will
>> be back soon as well.
>
> Do I smell a long-burning feud here?
>
> I dimly remember a somewhat more than lukewarm message exchange
> between you and Bruce, I do hope that I do not rekindle it by poking into
> a "sensitive area".

You are right, so you rather read the archive:
http://n2.nabble.com/Swazoo-f363584.html

> So I'm now asking from a strictly technical point of view:
>
> What are the differences between Swazoo 1 and 2?
>
> How does Bruce's Hyper library fit into Swazoo?
> Which parts of "plain" Swazoo would be replaced by it? How?

Let me answer just last question: request resolution framework will be
replaced back with old one from Swazoo 1. Well, we will loose a cleanly
designed framework, but not any functionality. Maybe later someone will
volunteer to make it nicer again, from scratch, ... :)

Best regards
Janko

--
Janko Mivšek
AIDA/Web
Smalltalk Web Application Server
http://www.aidaweb.si

-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Swazoo-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/swazoo-devel
Reply | Threaded
Open this post in threaded view
|

Re: HTTPAuthenticationChallenge missing

Bruce Badger
On 23/11/2008, Janko Mivšek <[hidden email]> wrote:

> Let me answer just last question: request resolution framework will be
>  replaced back with old one from Swazoo 1. Well, we will loose a cleanly
>  designed framework, but not any functionality. Maybe later someone will
>  volunteer to make it nicer again, from scratch, ... :)

Hmmm.  We (OpenSkills) did all that, and under the terms presented at the time.

Our work was ignored for Janko's version "1.0" of Swazoo which
prompted the naming of our HTTP work as Hyper.  Then Janko tried to re
licence our work and the work of others under a license of his
choosing without even bothering to discuss it with us.  Now he is
trying to expunge everything we did so he can have another go at
moving Swazoo to his preferred license.

If you do contribute to Janko's code base, beware that it really is
*Janko's* and he will do with it what he wants, when he wants.   ...
unless you release your work under a license that protects you from
such abuse.  Luckily, we did.

--
Make the most of your skills - with OpenSkills
http://www.openskills.org/
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Swazoo-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/swazoo-devel
Reply | Threaded
Open this post in threaded view
|

What a Mess, was Re: HTTPAuthenticationChallenge missing

Stefan Schmiedl
On Sun, 23 Nov 2008 22:23:50 +0000
"Bruce Badger" <[hidden email]> wrote:

> If you do contribute to Janko's code base, beware that it really is
> *Janko's* and he will do with it what he wants, when he wants.   ...
> unless you release your work under a license that protects you from
> such abuse.  Luckily, we did.

I took some hours last week, reading, thinking, (quite a bit of) head
scratching and here are the results:

- LGPL with its C-based background is a poor fit to image-based
systems, be they Smalltalk, Forth, Lisp, whatever. It's too hard to see
what is relevant, what not, what would be defensible in court, what not.
It feels like using FrameMaker for typing Forth source code.

- BSD/MIT is sooo simple in comparison. Weak in preservation, but
so much fewer words.

- Currently licensing of certain parts of Swazoo is unclear.

- I can understand how both Bruce and Janko arrived at their current position.

- Smart people can put themselves into positions, where only doing
stupid things is possible. I am seriously reminded of the way my two
older kids (9 and 11) are fighting with each other.

Since I'm not required to enforce peace before bedtime, I won't take
sides, instead I'm going to leave the room without raising any further
fuss.

Good luck, everybody.
s.

------------------------------------------------------------------------------
SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada.
The future of the web can't happen without you.  Join us at MIX09 to help
pave the way to the Next Web now. Learn more and register at
http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/
_______________________________________________
Swazoo-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/swazoo-devel