Orbeon Forms community mailing list

Initial Instance and Authentication

Classic

List

Threaded

4 messages Options

Hank Ratzesberger

Initial Instance and Authentication

I have a feeling that this has been asked and answered.
Hoping not to raise the objection of the judge, here it goes:

I am getting http error 401 when my xforms page loads. I try to
initialize an instance:

<xforms:instance id="sites" src="http://db.nees.ucsb.edu/exist/
rest/db/css30/sites.xml" />

No authentication is required to GET this instance, but the page
requesting it is
authenticated. As I understand, Orbeon will pass along the
authentication headers, that
is what is happening as far as I can tell from tcpmon logs.

How best to initialze so that authentication attempts are avoided?

Thanks for any tips here,
Hank

Hank Ratzesberger
NEES@UCSB
Institute for Crustal Studies,
University of California, Santa Barbara
805-893-8042

--
You receive this message as a subscriber of the [hidden email] mailing list.
To unsubscribe: mailto:[hidden email]
For general help: mailto:[hidden email]?subject=help
OW2 mailing lists service home page: http://www.ow2.org/wws

StephR

Re: Initial Instance and Authentication

Hi Hank,

What are the permissions that are defined on that file in eXist ?

Hank Ratzesberger a écrit :

>
> I have a feeling that this has been asked and answered.
> Hoping not to raise the objection of the judge, here it goes:
>
> I am getting http error 401 when my xforms page loads. I try to
> initialize an instance:
>
> <xforms:instance id="sites"
> src="http://db.nees.ucsb.edu/exist/rest/db/css30/sites.xml" />
>
> No authentication is required to GET this instance, but the page
> requesting it is
> authenticated. As I understand, Orbeon will pass along the
> authentication headers, that
> is what is happening as far as I can tell from tcpmon logs.
>
> How best to initialze so that authentication attempts are avoided?
>
> Thanks for any tips here,
> Hank
>
> Hank Ratzesberger
> NEES@UCSB
> Institute for Crustal Studies,
> University of California, Santa Barbara
> 805-893-8042
>
>
>
>
>

--
You receive this message as a subscriber of the [hidden email] mailing list.
To unsubscribe: mailto:[hidden email]
For general help: mailto:[hidden email]?subject=help
OW2 mailing lists service home page: http://www.ow2.org/wws

Hank Ratzesberger

Re: Initial Instance and Authentication

Hi Stephane,

owner:admin group:guest rwur--r--

Other clients don't seem to have any problem when
accessing without authentication headers.

Thanks,
Hank

On Dec 18, 2007, at 4:49 PM, Stephane Ruchet wrote:

> Hi Hank,
>
> What are the permissions that are defined on that file in eXist ?
>
>
>
> Hank Ratzesberger a écrit :
>>
>> I have a feeling that this has been asked and answered.
>> Hoping not to raise the objection of the judge, here it goes:
>>
>> I am getting http error 401 when my xforms page loads. I try to
>> initialize an instance:
>>
>> <xforms:instance id="sites" src="http://db.nees.ucsb.edu/exist/
>> rest/db/css30/sites.xml" />
>>
>> No authentication is required to GET this instance, but the page
>> requesting it is
>> authenticated. As I understand, Orbeon will pass along the
>> authentication headers, that
>> is what is happening as far as I can tell from tcpmon logs.
>>
>> How best to initialze so that authentication attempts are avoided?
>>
>> Thanks for any tips here,
>> Hank
>>
>> Hank Ratzesberger
>> NEES@UCSB
>> Institute for Crustal Studies,
>> University of California, Santa Barbara
>> 805-893-8042
>>
>>
>>
>>
>>
>
> --
> You receive this message as a subscriber of the [hidden email]
> mailing list.
> To unsubscribe: mailto:[hidden email]
> For general help: mailto:[hidden email]?subject=help
> OW2 mailing lists service home page: http://www.ow2.org/wws

Hank Ratzesberger
NEES@UCSB
Institute for Crustal Studies,
University of California, Santa Barbara
805-893-8042

--
You receive this message as a subscriber of the [hidden email] mailing list.
To unsubscribe: mailto:[hidden email]
For general help: mailto:[hidden email]?subject=help
OW2 mailing lists service home page: http://www.ow2.org/wws

Hank Ratzesberger

Re: Initial Instance and Authentication

In reply to this post by Hank Ratzesberger

I have worked around this issue so that I can access the eXist
data that is public (owned by user guest) and other data that
is owned by the same user as was authenticated.

o For instance initialization of public data, I use a pipeline.
The authentication tokens are not handed on.

o The non-public collection is owned by the same user as was
authenticated, so it actually is helpful to have token passed
along, granting access to the collection.

Yet we may want to consider how to control authentication for

<xforms:instance id="myinst" src="http://somedomain.com/anyurl" />

because any authentication to the current page will be passed along.

Cheers,
Hank

On Dec 18, 2007, at 4:45 PM, Hank Ratzesberger wrote:

>
> I have a feeling that this has been asked and answered.
> Hoping not to raise the objection of the judge, here it goes:
>
> I am getting http error 401 when my xforms page loads. I try to
> initialize an instance:
>
> <xforms:instance id="sites" src="http://db.nees.ucsb.edu/exist/
> rest/db/css30/sites.xml" />
>
> No authentication is required to GET this instance, but the page
> requesting it is
> authenticated. As I understand, Orbeon will pass along the
> authentication headers, that
> is what is happening as far as I can tell from tcpmon logs.
>
> How best to initialze so that authentication attempts are avoided?
>
> Thanks for any tips here,
> Hank
>
> Hank Ratzesberger
> NEES@UCSB
> Institute for Crustal Studies,
> University of California, Santa Barbara
> 805-893-8042
>
>
>
>
>
>
> --
> You receive this message as a subscriber of the [hidden email]
> mailing list.
> To unsubscribe: mailto:[hidden email]
> For general help: mailto:[hidden email]?subject=help
> OW2 mailing lists service home page: http://www.ow2.org/wws