A user authentication and authorization component for the BlazeWeb framework
Project description
Introduction
AuthBWC is a component for BlazeWeb applications. It provides users, groups, permissions, related helpers and views. Proper integration of this component will allow applications to have views that can only be accessed by certain users.
Includes email notifications when an account is created as well as an email based password reset mechanism.
Questions & Comments
Please visit: http://groups.google.com/group/blazelibs
Current Status
The code stays pretty stable, but the API may change in the future.
The AuthBWC tip is installable via easy_install with easy_install AuthBWC==dev
Change Log
0.1.5 released 2011-06-11
use Form from CommonBWC since it handles SAValidation errors now
fix bug in UserFormBase.add_field_errors()
Add UserMixin permission related methods
0.1.4 released 2011-01-07
- SECURITY FIX: fixed an issue with the way the HTTP session user permissions
were loaded. This vulnerability made it possible for a user to gain the permissions of the user logged in previously. The user would have had to be sharing the same http session for this access to have been gained.
0.1.3 released 2010-11-24
- modifying after_login_url() to take script_name into account (requires BlazeWeb
upgrade to 0.3.1)
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
