Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 41250 invoked from network); 27 Sep 2007 17:54:13 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 27 Sep 2007 17:54:13 -0000 Received: (qmail 48400 invoked by uid 500); 27 Sep 2007 17:53:53 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 48380 invoked by uid 500); 27 Sep 2007 17:53:53 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 48369 invoked by uid 99); 27 Sep 2007 17:53:53 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 27 Sep 2007 10:53:53 -0700 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy) Received: from [195.4.92.91] (HELO mout1.freenet.de) (195.4.92.91) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 27 Sep 2007 17:56:12 +0000 Received: from [195.4.92.15] (helo=mx5.freenet.de) by mout1.freenet.de with esmtpa (Exim 4.68) (envelope-from ) id 1IaxYI-0003Cs-LD for users@httpd.apache.org; Thu, 27 Sep 2007 19:53:30 +0200 Received: from lec67-1-81-56-104-13.fbx.proxad.net ([81.56.104.13]:10202 helo=tp570.private.tamay-dogan.net) by mx5.freenet.de with esmtpa (ID asmtp.tdnet@freenet.de) (port 587) (Exim 4.68 #6) id 1IaxYI-0002jz-G0 for users@httpd.apache.org; Thu, 27 Sep 2007 19:53:30 +0200 Received: by tp570.private.tamay-dogan.net (sSMTP sendmail emulation); Thu, 27 Sep 2007 19:53:29 +0200 Date: Thu, 27 Sep 2007 19:53:29 +0200 From: Michelle Konzack To: users@httpd.apache.org Message-ID: <20070927175328.GD1690@freenet.de> References: <20070925121919.GA1731@freenet.de> <1190739226.12752.21.camel@randerson.fimacsolutions.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="u65IjBhB3TIa72Vp" Content-Disposition: inline In-Reply-To: <1190739226.12752.21.camel@randerson.fimacsolutions.com> X-Message-Flag: Improper configuration of Outlook is a breeding ground for viruses. Please take care your Client is configured correctly. Greetings Michelle. X-Disclaimer-DE: Eine weitere Verwendung oder die Veroeffentlichung dieser Mail oder dieser Mailadresse ist nur mit der Einwilligung des Autors gestattet. Organisation: Michelle's Selbstgebrautes X-Operating-System: Linux tp570.private 2.4.27-tp570 X-Uptime: 16:01:09 up 1:17, 6 users, load average: 1.58, 1.47, 1.73 X-Homepage-2: http://www.debian.tamay-dogan.homelinux.net/ User-Agent: Mutt/1.5.9i X-Virus-Checked: Checked by ClamAV on apache.org Subject: [users@httpd] Re: One-Time authentificaton for multiple servers --u65IjBhB3TIa72Vp Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Am 2007-09-25 10:53:46, schrieb Rachel Anderson-Barrios: > Michelle, >=20 > I am not an apache expert. However, it sounds like you need an actual > programming to do what you would like to do. >=20 > >From the sounds of it, you would need to have a central program which > would check authentication every time the user made a request. If the Right, this is possibel, because the Website (authenticated part) is php-cgi driven and it is only a small additional code sniplet. > user wasn't logged in, it would throw an error sending them to a logon > screen. If they were logged in, it would update its internal 'logout > time'. It would have an independent thread which would check the list > every few minuets, checking the 'logout time' with the 'current time' > and remove anyone from that list who is past due. My idea was, if a $USER log in the first time, it authenticate against the PostgreSQL, and then my script create a local temp file with the $USER name. Each time the $USER access a new page, the script check, whether the file is there and update the "atime" (for example), if the file is not there, the script redirect the $USER to re-authenticate. Now I need a second script, which check the $TMP folder for the created $SER name files and check each against the PostgreSQL but cache the results (timeout) local. If a page was accessed inside the timeout, then it update the new timeout on the PostgreSQL or better, on the PostgreSQL server but not inside the database... So, if now the server change dynamicaly, it look at the PostgreSQL server whether a cached file from another Server is there and if not, it enforce an authentification otherwise it will update the timestamp local. > I would use the postgreSQL DB to authenticate the user, but not to > update their status. Your program should cache them into it's memory to > save on read-write to the database. Right... > We use something quite similar in our applications. I was thinking, there is something I can use for it without reinventing the wheel. Thanks, Greetings and nice Day Michelle Konzack Systemadministrator Tamay Dogan Network Debian GNU/Linux Consultant --=20 Linux-User #280138 with the Linux Counter, http://counter.li.org/ ##################### Debian GNU/Linux Consultant ##################### Michelle Konzack Apt. 917 ICQ #328449886 50, rue de Soultz MSN LinuxMichi 0033/6/61925193 67100 Strasbourg/France IRC #Debian (irc.icq.com) --u65IjBhB3TIa72Vp Content-Type: application/pgp-signature; name="signature.pgp" Content-Description: Digital signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFG++4YC0FPBMSS+BIRAus4AJwNkWdzNn9uHluOCD+y89/v4esz0QCfUqYx abHyb70mV2W6zJG8gLp8HsU= =CfZT -----END PGP SIGNATURE----- --u65IjBhB3TIa72Vp--