| admsteck wrote
I'm getting closer to having an actual release, hopefully in the next week or so. I was working on some authentication issues and have a few concerns. When working with 0.7 you are only able to get public project rss feeds or you need to use Windows authentication. Have you given any thought to authentication for version 0.8? Were you planning on including an authentication method into the webservices when the application is set for forms authentication? Another possible option is the create an intermediate http authentication module like explained here. For now I am planning on continuing with my release with the current limitations, but I thought I would mention this now before you get too far with 0.8.
|
Thats good to hear, I look forward to trying it out.
The authentication in 0.7 with the web services and RSS is a little broken currently. I spent a bit of time on this in 0.8 and so far it seems to be working ok. I have added checks to the rss feeds to make sure the user requesting the feed has access to the project. If the project is public it will allow anonymous users to request it.
In the web services I have added a login method. Each method checks if the user has logged in (for forms) or is already authenticated (windows) then subsequent checks are done in a method by method basis depending on the operation to see if the user is the right role or permission.
Here is an example of connecting to the webservices in 0.8 to delete a category.
BugNetServices services = new BugNetServices();
services.CookieContainer = new System.Net.CookieContainer();
services.Url = @"http://localhost/BugNet/WebServices/BugNetServices.asmx";
bool result = services.LogIn("myusername", "mypassword");
if(result)
{
//user is authenticated and do work here
services.DeleteCategory(1);
}
I hope this helps solve some of the problems with custom integration and there is lots of room for improvement.