Professional Documents
Culture Documents
mod_auth_remote v0.1 -
a single signon module using basic auth ( for Apache 2.0 & 1.3 )
****************************************************************
It then builds a HTTP header with authorization header built from the client's
userid:passwd. mod_auth_remote then makes a HEAD request to the authentication
server. On reciept of a 2XX response, the client is validated; for all other
responses the client is not validated.
3) Two different applications running under the same server could access 2
different authentication models without any pain
**************************************************************************
INSTALLATION
***************************************************************************
mod_auth_remote keywords/directives
AuthRemoteServer : The remote server against which the authentication has to take
place
AuthRemotePort : The port on which the remote server is runing
AuthRemoteURL : The (optional) path on the remote server which has to be
accessed
( should have been AuthRemotePath :-) )
As you would have noticed these 3 configuration directives are used to build the
complete URL against which mod_auth_remote authenticates.
*****************************************************************************
------------------------------------------
<Directory ~ "/application_1/">
AuthType Basic
AuthName CHICKEN_RUN
AuthRemoteServer auth1.saju.com
AuthRemotePort 80
AuthRemoteURL /One/Auth/method
require valid-user
</Directory>
<Directory ~ "/application_2/">
AuthType Basic
AuthName BIG-CHIEF
AuthRemoteServer auth1.saju.com
AuthRemotePort 80
AuthRemoteURL /luke/takes/a/walk
require valid-user
</Directory>
<Directory ~ "/application_3/">
AuthType Basic
AuthName ONE_RING
AuthRemoteServer www.sauron.com
AuthRemotePort 1290
AuthRemoteURL /auth
require valid-user
</Directory>
---------------------------------------------------
So, the biggest advantage here is that 'my.server.com' can host 3 different
applications having 3 different user sets and 'my.server.com' need not host any
sort
of authentication infrastructure (like having access to LDAP server or DB etc), it
need not have any authentication code at all !!
******************************************************************************
Linux users
This module is now part of the Mandrake Cooker distrib. You can download this
module off any Mandrake mirror
FreeBSD users
This module is now part of the FreeBSD www ports collection. Can be downloaded off
any FreeBSD-stable mirror.
Win32
www.gknw.net/development/apache/ httpd-2.0/win32/modules/
Netware
Index of /development/apache/httpd-2.0/netware/modules