how to "encrypt" the password/login for the blog.rb example?

Sat Feb 23 22:32:32 EST 2008

Thank you Mr. Taylor, Mr. Stienstra

It feels so great to be on the cutting edge of 1999's web encryption and
authorization!

Mr Taylor, I have used your module for digest authorization and was
wondering if you could answer a couple of questions:
What does module_function do without calling a :symbol?
How is the «service» function called when I'm calling «authenticate», which
only function is to raise if a condition is not met?

Mr. Stienstra, I have looked into using SSL with WEBrick.  Thank you very
much, it is exactly what I was looking for.

On Sat, Feb 23, 2008 at 2:10 PM, Brendan Taylor <whateley at gmail.com> wrote:

> On Fri, Feb 22, 2008 at 07:39:59PM +0100, Manfred Stienstra wrote:
> > On Feb 22, 2008, at 7:28 PM, Albert Ng wrote:
> >
> > > looking at the blog.rb example, I see a very nice example of
> > > authentication, but the username/password is transmitted in clear
> > > text form
> > >
> > > My question then is, Is there an easy way of "encrypting" that
> > > information?
> >
> > Well, the easiest way is to do logins over SSL. A second option could
> > be HTTP Digest Authentication, but browser support for that is flackey
> > to say the least.
>
> I've been using Digest myself, can't say I've run into any
> problems with browser support. Browser UI for it isn't great, of
> course.
>
...

> At the beginning of every controller method you want to be
> authenticated, call the 'authenticate' method.

attached is my current progress.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://rubyforge.org/pipermail/camping-list/attachments/20080223/711f300a/attachment.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ctd.rb
Type: application/octet-stream
Size: 4869 bytes
Desc: not available
Url : http://rubyforge.org/pipermail/camping-list/attachments/20080223/711f300a/attachment.obj 