Feature request: support the new cookie auth in couchdb 0.11.x

[GoogleCodeExporter]

A request to support the new cookie auth in couchdb.

I am hacking on the source and will have a modest solution soon.

Original issue reported on code.google.com by jma...@translab.its.uci.edu on 26 Feb 2010 at 8:30

[GoogleCodeExporter]

Before there is work on 0.11 features, we should confirm 0.10.1 t work..

Original comment by ff...@gmx.de on 27 Feb 2010 at 10:51

[GoogleCodeExporter]

0.10.1 worked so, as does 0.11. no cookie auth yet.

Original comment by ff...@gmx.de on 3 May 2010 at 10:15

[GoogleCodeExporter]

Okay.  I pulled from the most recent svn version (I used git svn rebase), and 
have
generated a diff of my changes versus the current svn head.  I then made 
multiple
patch files for different files I changed...hopefully I got all of them.

Patch files attached.

I can also upload my working tree to github, if you'd like.

Original comment by jma...@translab.its.uci.edu on 3 May 2010 at 9:21

Attachments:

• jcouchdb.cookieauth.server.patch
• jcouchdb.cookieauth.serverimpl.patch
• jcouchdb.cookieauth.properties.patch
• jcouchdb.cookieauth.localdatabasetest.patch

[GoogleCodeExporter]

sorry got the wrong pom patch file.  here is the correct one.  I had to make two
unrelated changes at some point.  The only relevant change is to use any 
*properties
file as a properties file, not just log4j.properties.

Original comment by jma...@translab.its.uci.edu on 3 May 2010 at 9:27

Attachments:

• jcouchdb.cookieauth.pom.patch

[GoogleCodeExporter]

Hi, many thanks for providing this library. A couple of questions:

1) What is the right way to work with the cookie auth code, such that the 
cookie for each user persist across multiple calls? Maybe I should keep a hash 
table of {username, Server}. Also, in createDatabaseForTestWithCookieAuth, 
isn't the cookie auth executed on every put/get, i.e. the cookie is not reused? 
I haven't ran the test myself, so sorry if I'm missing anything. 

2) When do you plan to release this?

3) Do you plan to add support for the _security API? I am interested in the 
full access control feature that CouchDB provides. Maybe I should file a 
separate ticket.

Thanks.

Original comment by stoyanov...@gmail.com on 21 Feb 2011 at 4:23

[GoogleCodeExporter]

Hi stoyanov,

As the author of the cookieauth patches, I assume that if the patches haven't 
made their way into the codebase yet either the maintainers don't want the 
code, or they haven't had time to test it.  But I am not currently using java 
and couchdb, so I am not actively maintaining these patches on my end.

My patches are submitted to the project and so I assume are covered under the 
same license as jcouchdb, so you are more than welcome to take my start and 
move it along.

Regards.

Original comment by jma...@translab.its.uci.edu on 21 Feb 2011 at 6:16