mod_auth_trustheader download

Mostly copied from mod_auth_basic of apache-2.2.

The basic-auth handshake was replaced by some code which gets the userid out of a customable variable. The variable could be anything ap_expr could read in authentication hook, e.g.: a header field, a httpd environment variable or an SSL environment variable. The syntax is the same known from RewriteCond of mod_rewrite: e.g.: %{HTTP:variable}, %{ENV:variable} or %{SSL:variable}

No password is written into internal httpd variables. So the authentication has to be validated by mod_authn_anon.
For authorisation any of the authz standard modules could be used.

Features

accept authentification of a an other server (e.g. reverse proxy)
accept authentification by trusting HTTP Header variable
accept authentification by trusting Environment variable
accept authentification by trusting SSL variable (e.g. SSL_CLIENT_M_SERIAL)

Project Activity

See All Activity >

License

Apache License V2.0

Follow mod_auth_trustheader

mod_auth_trustheader Web Site

Other Useful Business Software

Gen AI apps are built with MongoDB Atlas

Build gen AI apps with an all-in-one modern database: MongoDB Atlas

MongoDB Atlas provides built-in vector search and a flexible document model so developers can build, scale, and run gen AI apps without stitching together multiple databases. From LLM integration to semantic search, Atlas simplifies your AI architecture—and it’s free to get started.

Start Free

Rate This Project

User Reviews

Be the first to post a review of mod_auth_trustheader!

Additional Project Details

Intended Audience

Other Audience, Security, Security Professionals, System Administrators

Programming Language

Related Categories

C HTTP Servers

Registered

2012-04-09

Similar Business Software

Jaisocx

Since 2024 Jaisocx supports PHP over HTTP/3, intuitively switching among HTTP/1.1, h2 and h3 depending on negotiation with HTTP client. a) Unique feature is Charset detection of published text contents, and making browser showing correctly extended ascii chars like in German or French alphabets....

See Software
Tengine

Tengine is a web server originated by Taobao, the largest e-commerce website in Asia. It is based on the Nginx HTTP server and has many advanced features. Tengine has proven to be very stable and efficient on some of the top 100 websites in the world, including Taobao and tmall. Tengine has been...

See Software
OpenLiteSpeed

OpenLiteSpeed is the Open Source edition of LiteSpeed Web Server Enterprise. Both servers are actively developed and maintained by the same team, and are held to the same high-quality coding standard. OpenLiteSpeed contains all of the essential features found in LiteSpeed Enterprise, and...

See Software
H2O

H2O is a new generation HTTP server that provides a quicker response to users with less CPU utilization when compared to older generation of web servers. Designed from the ground up, the server takes full advantage of HTTP/2 features including prioritized content serving and server push,...

See Software
Mako Server

The Mako Server is a compact, event-driven web and application server designed for resource-constrained systems. Engineered for embedded environments, it combines a lightweight HTTP/HTTPS server with a Lua scripting engine, enabling high-level development with direct access to low-level C code....

See Software
Tornado Web Server

Tornado is a Python web framework and asynchronous networking library, originally developed at FriendFeed. By using non-blocking network I/O, Tornado can scale to tens of thousands of open connections, making it ideal for long polling, WebSockets, and other applications that require a long-lived...

See Software