httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dirk-Willem van Gulik <di...@webweaving.org>
Subject RE: Authentication users
Date Wed, 21 Aug 2002 09:13:17 GMT


On Wed, 21 Aug 2002, Boyle Owen wrote:

> If the two machines have different URLs (www1.site.tld, www2.site.tld)
> then the browser will regard them as separate realms and will require
> two passwords. You can have the same user names and passwords on the two
> machines (just use the same AuthUserFile) but you will require two
> logins. So what you want is not possible.

One 'trick' you can use is to work around this is to authenticate on
login.site.tld and then set a cryptographic cookie for the domain site.tld
when login is successful. See for example mod_auth_cookie (there are
several modules with that name, they all do the same) or CPAN's
AuthTicket. Or if you want to use something very much akin to htpasswd
check out mod_cookie_auth_file/ldap.

When combined with something like radius, tacacs+ or ldap this solution
can be used to scale login's up to very large and complex sites and large
numbers of concurrent users with little or no performance degradation.

Dw


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message