|
Roger Binns
rogerb at rogerbinns.com
Mon Apr 30 19:47:02 EDT 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I have two separate paths in my web server. One is /admin below which
is a web based administration application. The other is a REST style
api which is available as /api/object/{list,create,delete}
In the web admin pages, I need to include information from the api but
can't see how to do it. Note that the web administrator will have set
authentication/authorization on the /api path (eg all users can list,
only some can create and delete).
Effectively I need to be able to construct a new request object within
the admin code pointing to the api code, copy across the authentication
information from the admin request, issue the request and read the results.
The alternative is for the web administrator to also have to put
authentication and access control on the web admin, but then that is two
locations and the web admin doesn't have the same granularity as the
REST urls+methods.
Roger
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGNn/2mOOfHg372QQRApMfAJ0Te7pEPI1l2MNs+otOVgqAxM36TwCg4/vI
2xAQ+sZhz+QmeU8Ec1JcWSU=
=96xI
-----END PGP SIGNATURE-----
|