Menu
▾
▴
Re: [SL] new session procedure
|
From: Gavin C. <ga...@op...> - 2006-09-09 22:55:38
|
On Fri, Sep 08, 2006 at 08:59:16AM -0400, Christopher Murtagh wrote: > On 9/7/06, Gavin Carr <ga...@op...> wrote: > > Dieter, would it be difficult to (as an alternative) to support > > external authentication i.e. delegate the authentication to apache, > > and on the SL side just trust the REMOTE_USER environment variable, > > and bypass the SL authentication if this is set? > > One of our goals in LedgerSMB is to have a plugable authentication > scheme and probalby support LDAP and Kerberos (HTTP Basic Auth would > be fairly simple too). Note that this isn't quite what I'm asking for Chris. "Pluggable" authentication implies specific support by the appliation of auth scheme X. I'm after "external" authentication, meaning you do the auth at the apache level using any authentication module apache supports, and SL just accepts the authenticated user as given to it by apache. There's a place for both, but I'm specifically interested in the second. Cheers, Gavin |
