[Catalog-sig] pythonpackages.com beta security

Richard Jones richard at python.org
Fri Jul 20 08:38:31 CEST 2012

On 20 July 2012 15:43, Donald Stufft <donald.stufft at gmail.com> wrote:
> On Friday, July 20, 2012 at 1:07 AM, Richard Jones wrote:
> That's OAuth2, which is quite unlike the OAuth1(a) that we
> implemented. You cannot do OAuth1 with just requests, as far as I'm
> aware. There's no documentation for PyPI OAuth as we're still waiting
> for it to be used by someone to prove its usefulness.
> I havn't had a chance yet (doing a major refactor first), but there's
> experimental
> OAuth 1a support in the most recent versions of requests.

Oh, nice! I'll see if I can find some time over the weekend to write
up how to use that against the PyPI implementation.


More information about the Catalog-SIG mailing list