XML-RPC SSL and client side certs?
"Martin v. Löwis"
martin at v.loewis.de
Wed Apr 11 18:43:07 EDT 2007
Jeff McNeil schrieb:
> I apologize for not giving you a Python specific answer, but for the
> XMLRPC services I've deployed, I front them with Apache and proxy back
> to localhost:8080.
>
> I do all of the encryption and authentication from within the Apache
> proper and rely on mod_proxy to forward validated requests on. I've
> settled on basic authentication, but I see no reason why you couldn't
> take advantage of mod_ssl.
There is an issue with forwarding SSL connections, of course: it
is not possible - at least not with the same client identity as
the original user.
In turn, it's not easy to forward the identity of the authenticated
user, either: even though Apache will know who he is, it has no
way of telling on the forwarded request.
So you would have to use CGI or mod_python in this case.
Regards,
Martin
More information about the Python-list
mailing list