pq01

Asked: 2011-06-23 10:15:56 +0800 CST2011-06-23 10:15:56 +0800 CST 2011-06-23 10:15:56 +0800 CST

Can Apache be integrated with 3rd party cookie session authentication/authorization?

I'd like to configure Apache to serve files directly from the file system but authenticate/authorize users. How can Apache be configured so it calls my auth middleware?

Basically:

1) Redirect to login if user is not authenticated. Check session cookie against database otherwise.

2) Allow access to certain files based on who the user is (authorization).

1 Answers

Voted

larsks
2011-06-23T11:04:05+08:002011-06-23T11:04:05+08:00
Try a Google search for "apache single signon" or "apache sso". In particular, look at:

mod_auth_tkt

mod_auth_pubtkt

Shibboleth

Pubcookie

Cosign

All of these implement almost exactly the mechanism you've described.
5

Can Apache be integrated with 3rd party cookie session authentication/authorization?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?