Re: [PHP] Authentification and LDAP (SSO / Single Sign-On)

---

• From: nick.talbott@xxxxxxxxxxxx (Nick Talbott)
• Date: Tue, 7 Nov 2006 12:32:44 +0000

---

On Tuesday 07 November 2006 12:13, Alain Roger wrote:

I'm currently developing a PHP application as intranet tool for our
company. I would like to make users connect to this tool with an
authentification window where they can enter their domain login and
password.
via LDAP and Apache module mod_auth_ldap, i would like to check this user
login and password.
Only if it's correct, they can enter in my tool.

I tried to find some example of PHP code but without success.

If you are using Apache's mod_auth_ldap to implement authentication and access
control, your Apache configuration (in .htaccess file or server
configuration file) will have to specify how this is to work. Apache will
present a standard HTTP challenge for username and password and deny access
if these are invalid for the requested URL.

Your PHP appliction will be able to see the username of the authenticated user
(as the server variable AUTH_USER). Using mod_auth_ldap means that you
don't need to code anything in PHP - all access control is done by Apache.

HTH

- Nick

-----------------------------------------
Mae'r e bost hwn ac unrhyw atodiad iddo yn gyfrinachol ac fe'i
bwriedir ar gyfer y sawl a enwir arno yn unig. Gall gynnwys
gwybodaeth freintiedig. Os yw wedi eich cyrraedd trwy gamgymeriad
ni ellwch ei gopio, ei ddosbarthu na'i ddangos i unrhyw un arall a
dylech gysylltu gyda Cyngor Sir Powys ar unwaith.

Mae unrhyw gynnwys nad yw'n ymwneud gyda busnes swyddogol Cyngor
Sir Powys yn bersonol i'r awdur ac nid yw'n awdurdodedig gan y
Cyngor.

This e mail and any attachments are confidential and intended for
the named recipient only. The content may contain privileged
information. If it has reached you by mistake, you should not copy,
distribute or show the content to anyone but should contact Powys
County Council at once.

Any content that is not pertinent to Powys County Council business
is personal to the author, and is not necessarily the view of the
Council.

.

---

• References:
  • Authentification and LDAP (SSO / Single Sign-On)
    • From: "Alain Roger"

• Prev by Date: Authentification and LDAP (SSO / Single Sign-On)
• Next by Date: Re: 'View as HTML' Conversions
• Previous by thread: Authentification and LDAP (SSO / Single Sign-On)
• Next by thread: Re: [PHP] Authentification and LDAP (SSO / Single Sign-On)
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Insecure handling of Apache restrictions? ... Hash: SHA1 ... then NO authentification is done! ... I'm certainly out of date with apache as I haven't configured it in a while, ... (Security-Basics) LDAP authentification (2.0 -> 2.2) ... I am setting up a test server with apache 2.2.0 and having trouble with LDAP ... authentification. ... open password file: ... (comp.infosystems.www.servers.unix) Apache authentification failure ... I've already tried on the German Debian list. ... For some time now Authentification with Apache Webserver does not work ... Nevertheless Apache does not allow me to acces protected directories. ... Server version: Apache/1.3.33 ... (Debian-User) Re: LDAP authentification (2.0 -> 2.2) ... I am setting up a test server with apache 2.2.0 and having trouble with LDAP ... authentification. ... LDAP-auth has been revamped for Apache 2.2, and your config from 2.0 ... (comp.infosystems.www.servers.unix)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(17)