|
Apache SSO using mod_auth_remote
Has anyone used the mod_auth_remote module to delegate authentication?
I have two apache2 servers. One is a content server and the other one is the sso/auth server. When the content server receives a request for a resource protected by basic authentication, the request is forwarded to the sso server for authentication. So far so good. But, the sso server should return a http 200 to the content server and granting access to the user. However, the sso server always returns a http 301 to the content server. So I appear to be stuck in an authentication loop. Content server config: <Directory /var/www/html/secure/> AuthType Basic AuthName "Content server" AuthRemoteServer sso.intra AuthRemotePort 80 AuthRemoteURL /auth Require valid-user </Directory> Sso server config: <Location /auth> AuthType Basic AuthUserFile /etc/httpd/conf/auth.users AuthName "Test auth" Require valid-user </Location> Or perhaps you have a better way of accomplishing apache sso across multiple servers? |
Never tried auth_remote.
There is auth_mysql and auth_pgsql, for simply authentication to a mysql or postgres SQL-server. Ive used auth_mysql a couple of times, and its really simple. Also, but auth external allows you to write a small script to validate the user. This script can of course do anything youd like, including looking up something remote. |
| All times are GMT -5. The time now is 02:58 PM. |