You’re reading Jeff Watkins’ thoughts about Web application design and development with a little bit of technology ranting thrown in for free.
I got a subscription renewal invoice from Element K Journals in the mail today for Inside Microsoft Windows Server Security, Windows Security Online Answers On-Demand Service, and Microsoft Windows Server Security Discussion Forum.
Both of you who regularly read this site know I am neither a fan of Microsoft or their craptacular operating system. So it [...]
OK. Now I get it. The whole Bundles thing hasn’t got really good usability, but it certainly is powerful.
I’m also doing a fail bit of Python development these days. TextWrangler just doesn’t handle expanding tabs into spaces correctly, and because indentation is significant to Python, this can be a huge problem.
Now all I need do [...]
I just committed the code for the TurboGears identity management support (revision 89). And because this is such new code, I thought it might be helpful to include a short How To for getting everything up and running.
This How To is written from the perspective of a fresh quick-started project, but most everything applies for [...]
I’ve been working on an authentication system for TurboGears and my forthcoming Content Management System.
I really wanted to support a REST interface to the admin console. For example:
GET /admin/user/jeff HTTP/1.1 Accept: text/javascript
Should return a JSON formatted object containing my user record. That actually works great.
The admin console will interact with the server by creating Ajax requests [...]
Authentication baked into the framework
All the frameworks I’ve looked at have poor authentication support. Some don’t have an authentication framework at all. Some support HTTP Basic Auth or HTTP Digest Auth. Others support form-based login withought HTTP auth.
Using form-based authentication is preferred for Web applications because you have complete control over the user experience. You [...]