[Typo3-dev] S: Sponsoring Windows authentification in TYPO3
Hans J. Martin
hans-jakob.martin at gmx.net
Thu Aug 26 15:46:53 CEST 2004
Hi,
I've uploaded an extension wich does half the way:
It makes the NTLM auth with the client and if the user is found it will
force the log in.
It does not (now) check the users password - so only use this if you can
trust the logged in windows user.
Moreover it does only work the first time you start the browser, because it
checks if a cookie is set. Doing it this way you can logoff and start a new
session as an other user.
The extension might be a good start for improvement and setting up more
secure services -
more over this one does not need any additional apache modules - you can see
the whole story of howto get the ntlm auth in the source.
Does this help you?
Rgds,
Hans
"Juergen Egeling" <egeling at punkt.de> schrieb im Newsbeitrag
news:mailman.77.1093519366.31097.typo3-dev at lists.netfielders.de...
> Hi,
> to be honest I am a little bit puzzled. I have a lot of offers that
> say they have done it. Which is ok. But coming to the SSO point
> (Singled sign on) with apache under Linux I now have two versions.
> One group says: absolutely impossible, works only under IE, the other
> group says: OK, possible under Linux.
> To be honest, I do not know why it should not be possible with apache.
> Is there no way the browser can tell the php website, which user is
> using the browser, and the php script than asks a server if this
> user is allowed to log-in? Or where do the problems come from.
> It might be interesting for all of you to discuss if it is really
> impossible or if there are chances to implement this, ....
>
> have fun
> Juergen
> --
> punkt.de GmbH Internet-Dienstleistungen-Beratung
> Vorholzstr. 25 Tel.: 0721 9109-0 Fax: -100
> 76137 Karlsruhe info at punkt.de http://punkt.de/
>
More information about the TYPO3-dev
mailing list