21 Nov
2008
21 Nov
'08
4:32 a.m.
Dan Svoboda wrote:
How does one generate new key/value pair for form
based authentication?
i.e. new values for;
xwiki.authentication.validationKey=totototototototototototototototo
xwiki.authentication.encryptionKey=titititititititititititititititi
Just write any random string, as long as the length is the same. There's
no special format other than the length requirement.
Will anything else have to be changed after changing
these values?
No.
Also, what is the meaning of:
xwiki.authentication.cookiedomains=xwiki.com,wiki.fr
Should this be set to my own domain?
This concerns mostly wiki farms. The exact meaning is that when a user
logs in, if the server name corresponding to the wiki ends with one of
the entries in this parameter, then the cookie is set for the larger
domain. Otherwise, it is set for the exact domain name of the wiki.
For example, suppose I log in on wiki1.xwiki.com, then the cookie will
be set for the entire xwiki.com domain, and if I visit wiki2.xwiki.com I
will still be authenticated. If I log in on wiki1.otherdomain.net, then
I will only be authenticated on wiki1.otherdomain.net, and not on
wiki2.otherdomain.net.
So the short answer is: only if you need global authentication in a
farm. Otherwise, you should remove the default value to increase
performance a bit.
--
Sergiu Dumitriu
http://purl.org/net/sergiu/