Challengers are a subsystem of TiddlyWeb used for user authentication.

TiddlyWeb currently includes support for simple username and password authentication against users stored in the store. Plugins provide other methods, including OpenID.

Adding more challengers is straightforward. There is an example of using google auth in the code use to TiddlyWeb working on googleappengine.

An instance of TiddlyWeb may be configured to use one or multiple challengers. A GET web request will automatically redirect to the challenger system when a constraint in a policy is not met.

Challengers are by design triggered only when unauthorized content is accessed but can be explicitly triggered by going to the /challenge URL on your installation.

See Auth Model for more information.