#1 Apache Basic Auth to use with SSO

open
nobody
None
5
2012-12-10
2012-02-16
Anonymous
No

I'm using daloradius but I want to integrate it with our SingleSignOn system called PAPI (papi.rediris.es)
In order to enable our SSO, I need to auth my user with apache Basic Auth, and these are the modifications that I do for this purpose.
This patch validates if a concrete REMOTE_USER exists in database (no password check, credentials are checked in apache).
And if the REMOTE_USER is not the same user than the session one, it redirects to dologin.php for a new session. (If I close and reopen SSO session with another user, daloradius should create a new session.)
This patch is for daloradius 0.9.9 and should work on other based cookies single sign-on like CAS.

Discussion


Anonymous


Cancel   Add attachments