<html>
  <head>
    <meta content="text/html; charset=ISO-8859-1"
      http-equiv="Content-Type">
  </head>
  <body text="#000000" bgcolor="#FFFFFF">
    On 04/24/2012 10:19 AM, Nick Lothian wrote:
    <blockquote
cite="mid:CAJMabq0H8C2rzgQhPwdebUJrNdAEpA3hG7Y1OdnyHdT=3_VRbw@mail.gmail.com"
      type="cite">
      <div class="gmail_extra">JSONP is great, but won't work with POST
        requests.</div>
      <div class="gmail_extra"><br>
      </div>
      <div class="gmail_extra">I don't quite understand what "Due to the
        redirect nature of the auth system" means, though. <br>
      </div>
    </blockquote>
    <br>
    Sorry, I am working on a few things that are related.  OpenID and
    various other systems have issues along these lines that are due to
    the fact that they are done with redirects.  UI'll try to be clearer
    in the future.<br>
    <br>
    <br>
    That actually works fine because the token is not in the header when
    it comes from Keystone.  However,  if you were to post toa web app
    that then needed to make your browser post to a remote system (which
    is where the same origin policy comes in to play)  you need to set
    that Auth token into a custom header,  and Javascript is forbidden
    to do that.  Yes,  the Javascript can say "post to glance" or some
    other openstack API server,  but it can't set the X auth header with
    the token from Keystone in order to make the call authenticated.<br>
    <br>
    <br>
    <br>
    <blockquote
cite="mid:CAJMabq0H8C2rzgQhPwdebUJrNdAEpA3hG7Y1OdnyHdT=3_VRbw@mail.gmail.com"
      type="cite">
      <div class="gmail_extra"><br>
      </div>
      <div class="gmail_extra">Nick</div>
      <div class="gmail_extra"><br>
        <div class="gmail_quote">On Tue, Apr 24, 2012 at 8:57 PM, Sandy
          Walsh <span dir="ltr"><<a moz-do-not-send="true"
              href="mailto:sandy.walsh@rackspace.com" target="_blank">sandy.walsh@rackspace.com</a>></span>
          wrote:<br>
          <blockquote class="gmail_quote" style="margin:0 0 0
            .8ex;border-left:1px #ccc solid;padding-left:1ex">Due to the
            redirect nature of the auth system we may need JSONP support<br>
            for this to work.<br>
            <div class="HOEnZb">
              <div class="h5"><br>
                <br>
                <br>
                _______________________________________________<br>
                Mailing list: <a moz-do-not-send="true"
                  href="https://launchpad.net/%7Eopenstack"
                  target="_blank">https://launchpad.net/~openstack</a><br>
                Post to     : <a moz-do-not-send="true"
                  href="mailto:openstack@lists.launchpad.net">openstack@lists.launchpad.net</a><br>
                Unsubscribe : <a moz-do-not-send="true"
                  href="https://launchpad.net/%7Eopenstack"
                  target="_blank">https://launchpad.net/~openstack</a><br>
                More help   : <a moz-do-not-send="true"
                  href="https://help.launchpad.net/ListHelp"
                  target="_blank">https://help.launchpad.net/ListHelp</a><br>
              </div>
            </div>
          </blockquote>
        </div>
        <br>
      </div>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
      <pre wrap="">_______________________________________________
Mailing list: <a class="moz-txt-link-freetext" href="https://launchpad.net/~openstack">https://launchpad.net/~openstack</a>
Post to     : <a class="moz-txt-link-abbreviated" href="mailto:openstack@lists.launchpad.net">openstack@lists.launchpad.net</a>
Unsubscribe : <a class="moz-txt-link-freetext" href="https://launchpad.net/~openstack">https://launchpad.net/~openstack</a>
More help   : <a class="moz-txt-link-freetext" href="https://help.launchpad.net/ListHelp">https://help.launchpad.net/ListHelp</a>
</pre>
    </blockquote>
    <br>
  </body>
</html>