[Zope-CMF] using zope authentication outside of Zope...

larry_prikockis@natureserve.org larry_prikockis@natureserve.org
Mon, 20 May 2002 14:28:01 -0400


Here's the situation- 

I'd like to use a php-based forum (w-agora) as part of a site that will be
otherwise built in Zope/CMF.
Is there a relatively simple way of getting at the __AC cookie zope is using
for authentication from this php application?  

Or am I going about things the wrong way?   I want to avoid having a user
already logged into the CMF portal be required to log in again to be
authenticated for the php-forum.  In other words, I'd like to just pass the
Zope/CMF credentials along to the other application.  So far, my fiddling
around with cookies hasn't been fruitful.

all clues greatly appreciated...  (as are warnings as to why, from a
security perspective, I don't want to be doing this... I have a bad feeling
that if I get it to work, it'll only be by opening up some colossal security
hole :-(


thanks-
Larry
+
Larry J. Prikockis
Internet Systems Specialist, NatureServe
Voice:703-908-1833 / Fax:703-908-1917 /
Email:larry_prikockis@natureserve.org
www.natureserve.org
+
All programmers are optimists. Perhaps this modern sorcery especially
attracts those who believe in happy endings and fairy godmothers. Perhaps
the hundreds of nitty frustrations drive away all but those who habitually
focus on the end goal. Perhaps it is merely that computers are young,
programmers are younger, and the young are always optimists. But however the
selection process works, the result is indisputable: "This time it will
surely run," or "I just found the last bug."
-- Frederick P. Brooks, Jr., The Mythical Man Month