[tahoe-lafs-trac-stream] [Tahoe-LAFS] #3006: Expose the Eliot logs in a safer way
Tahoe-LAFS
trac at tahoe-lafs.org
Wed Mar 20 23:30:31 UTC 2019
#3006: Expose the Eliot logs in a safer way
-------------------------+-----------------------
Reporter: exarkun | Owner:
Type: defect | Status: new
Priority: normal | Milestone: undecided
Component: unknown | Version: 1.12.1
Resolution: | Keywords:
Launchpad Bug: |
-------------------------+-----------------------
Comment (by meejah):
It seems that "officially" you cannot use POST to start a WebSocket
connection (RFC says "start with GET" and Autobahn code does check the
method).
It is no problem to put an Autobahn `WebSocketResource` into the Nevow
tree and make a successful client connection (also with Autobahn).
Two options for authentication: we "do nothing" until the client-side
WebSocket sends an authentication of some kind, or include the token in a
header (e.g. `Authorization:`) and reject any connections that don't have
it. The latter is probably easier.
--
Ticket URL: <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/3006#comment:6>
Tahoe-LAFS <https://Tahoe-LAFS.org>
secure decentralized storage
More information about the tahoe-lafs-trac-stream
mailing list