File: README.md

package info (click to toggle)
mod-authz-securepass 0~20140715+0git93f271f5-3
  • links: PTS, VCS
  • area: main
  • in suites: jessie, jessie-kfreebsd
  • size: 216 kB
  • ctags: 182
  • sloc: ansic: 1,748; makefile: 71
file content (33 lines) | stat: -rwxr-xr-x 1,443 bytes parent folder | download
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
Apache authorization module for SecurePass
==========================================

This is an Apache (2.2 and 2.4) module for authorizing SecurePass users.
SecurePass provides web single sign-on through the CAS protocol.

This module enhances the Apache authorization features by introducing two rules to restrict access 
to the Apache resources:

* the first rule allows only users belonging to specific SecurePass realm(s) to access the Apache resource
* the second rule allows only users belonging to specific SecurePass group(s) to access the Apache resource

More on SecurePass at http://www.secure-pass.net

To install the module, please read file INSTALL.

Credits
===========================================
I wrote this module starting from Alessandro Lorenzi version at 
https://github.com/AlessandroLorenzi/mod_authz_securepass, which provided authorization based on realms

I added authorization based on groups, which implied:
- call a RESTFul API provided by Securepass (https://beta.secure-pass.net/trac/wiki/GroupsApi), 
  to check if a given user belongs to a given group 
- parse the JSON packet returned
- cache locally, for a configurable time, the user-group mappings returned by the API

To parse the JSON packet, I used a nice parser called jsmn, developed by zserge and available at 
bitbucket.org/zserge/jsmn under the MIT license.

Author
===========================================
gplll1818@gmail.com, Jun 2014