I want to have token based RSS&ICAL feeds to a private website (Open Atrium, access to contents only after login). I added the tokenauth module, created the views, and it works fine (tokenauth authenticates with the user needed), but if I turn on access permissions (view available to authenticated user only), it returns with an access denied page (it authenticates, as shown from the member login box, etc. but still cannot access the view.) What might be the problem?

Comments

Grayside’s picture

Grayside commented
Assigned: Unassigned » Grayside

I just looked at this, and I'm seeing a problem with OA Beta 6 and Tokenauth as well. I know it worked smoothly with Beta 3.

I'll be looking into this.

Grayside’s picture

Grayside commented
Status: Active » Postponed (maintainer needs more info)

Cannot Reproduce.

My problem earlier I tracked to having put a bad path in the allowed urls in admin/settings/tokenauth.

Have you tried clearing the cache? Are you sure you are using the correct token? Etc.

tdombos’s picture

tdombos commented

I tried clearing the cache, no luck.

The token is correct (otherwise it would not log me in, right?)

I put this in the active token pages:

rss.xml
*/feed
*/opml
*/ical

And tried to access: http://intranet.hatter.hu/rss.xml?token=m4NHumYtrc (you can see it logged me in, but gives an access denied message)

Grayside’s picture

Grayside commented

That's... strange. Have you tried dropping the module weight and clearing the cache? Tokenauth authenticates the user in hook_init(), so I suppose if something started setting access denied before tokenauth was reached, something like that might happen.

If that doesn't work, it becomes a more complex problem of trying to identify why that page is getting access denied, and determining if Tokenauth is missing something (like a special session variable or the like.)

Grayside’s picture

Grayside commented
Status: Postponed (maintainer needs more info) » Fixed

This is now solved in -dev. The problem: While tokenauth was successfully working, Spaces was denying access to the content before tokenauth was operating.

Tokenauth weight is now set to -1000 to avoid this kind of thing.

Grayside’s picture

Grayside commented
Title: views permissions & tokenauth » Spaces Compatibility

Title change for future reference.

Status: Fixed » Closed (fixed)

Automatically closed -- issue fixed for 2 weeks with no activity.