[Zope-PAS] Re: plone and openSSO

Sven Deichmann deichmann at werkbank.com
Tue Sep 12 03:31:05 EDT 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Serge, hi list,

> What I would like to do is to get the value of the session cookie the 
> access manager sets in the clients browser upon successful login and 
> then invoke the web service via soap with the cookie value which returns 
> the user name that I will then pass over to Zope.
> However I found this task impossible to do because I was not able to 
> find the way to access client session cookies with python or zope.
> Or I'm wrong...??

There SHOULD be no way to read cookies directly. That's a security
mechanism. Cookies which have a domain as origin that match the current
request/site are sent to the site by the browser automatically. They are
then usually available via server variables.
That way they should be available to you. What you can NOT do is access
cookies of a different domain. (I am not 100% sure about subdomains)
If both systems are on different machines (from the browsers point of
view) they can't read each others cookies.

Regards,
Sven


- --
- ---------------------------------------------------------------
  Information nimmt Gestalt an... - <http://www.werkbank.com>
- ---------------------------------------------------------------
Werkbank Multimedia GmbH * Bergstrasse 152 * 44791 Bochum * GER
Fon: +49(0)234/ 935386-03  * Fax: 935386-06 * mail at werkbank.com
- ---------------------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkUGYjkACgkQrtkX100RwBQ0JgCg+Rf5h481NB/MHNW7zaQbDTaC
wVMAoLFMxZgazCLYvnPDN7fU+mjj07zP
=KGO9
-----END PGP SIGNATURE-----


More information about the Zope-PAS mailing list