I am an idiot
Nov. 16th, 2007 09:48 am![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
elfsY'know my last post with all my fears about the oauth standard and all that? It suddenly occurred to me that I am overengineering something, and that something is right there in the previous post. I mentioned mod_webware, which implements a very generic application server interface.
Is there any reason why I couldn't implement a very generic authentication server interface? Bundle up the signature components into a struct, send them to the server, get back the response, viola!.
Problem solved. The initial implementation could be in something high-level, for testing purposes, and then I'd componentize down to the C-layer. Eventually, it might move into apache, but why? This handles multi-server authentication issues anyway (see mod_digest for why this is an issue).
For the POST issue: I'm just gonna ignore it for now. It's a future improvement.
Is there any reason why I couldn't implement a very generic authentication server interface? Bundle up the signature components into a struct, send them to the server, get back the response, viola!.
Problem solved. The initial implementation could be in something high-level, for testing purposes, and then I'd componentize down to the C-layer. Eventually, it might move into apache, but why? This handles multi-server authentication issues anyway (see mod_digest for why this is an issue).
For the POST issue: I'm just gonna ignore it for now. It's a future improvement.
