[Erp5-report] r43850 kazuhiko - /erp5/trunk/products/ERP5Security/ERP5KeyAuthPlugin.py
nobody at svn.erp5.org
nobody at svn.erp5.org
Tue Mar 1 14:18:39 CET 2011
Author: kazuhiko
Date: Tue Mar 1 14:18:38 2011
New Revision: 43850
URL: http://svn.erp5.org?rev=43850&view=rev
Log:
update docstring comment.
Modified:
erp5/trunk/products/ERP5Security/ERP5KeyAuthPlugin.py
Modified: erp5/trunk/products/ERP5Security/ERP5KeyAuthPlugin.py
URL: http://svn.erp5.org/erp5/trunk/products/ERP5Security/ERP5KeyAuthPlugin.py?rev=43850&r1=43849&r2=43850&view=diff
==============================================================================
--- erp5/trunk/products/ERP5Security/ERP5KeyAuthPlugin.py [utf8] (original)
+++ erp5/trunk/products/ERP5Security/ERP5KeyAuthPlugin.py [utf8] Tue Mar 1 14:18:38 2011
@@ -157,13 +157,11 @@ class ERP5KeyAuthPlugin(ERP5UserManager,
<ERP5_Root>/web_page_module/1?__ac_key=207221200213146153166
- where value of __ac_key contains (encrypted):
- - proxied (i.e. granting user) username
- - PAS plugin encryption key
-
- XXX: improve encrypt & decrypt part to use PAS encryption_key with a true
- python encryption library (reuse of public / private key architecture)!
+ where value of __ac_key contains an encrypted reference of a user
+ TODO: We should use a real PKI (Public Key Infrastructure) so that we
+ can revoke a part of already provided keys without changing the
+ encryption key or a user's reference.
"""
meta_type = "ERP5 Key Authentication"
More information about the Erp5-report
mailing list