Sessions for XML-RPC

[DevAlien]

Problem

In the module "Blog" you could administrate it by a mobile phone and to do it the module will provide XML-RPC APIs but to use them you should send always Username and Password and is not good. Example: Mobile Phone (MP): request list of comments => (AneCMSBlog.Comments: user, pass, postID) As you can see, for each request you must send the Username and Password.

Proposed Solution:

In the CMS we will give an XML-RPC web services for the login. AneCMS.Login: user, pass => Return a user ID. The user ID will be associated to an IP, so all the requests will be done just with the ID given by the login and if the IP is different the user will not be able to finish the request. If the Session for the user is finished you can do the login again.

Example: AneCMSBlog.Comments: userID, postID

[Operation79]

What would happen if you have a dynamic IP Address ?

[DevAlien]

when the user id is not any more associated you need to do the login again. We have already tested it in the version of AneCMS for android. and also after a certain period of inactivity the session will be destroyed.