On 1 Aug 2011, at 05:14, Chris Hecker <[email protected]> wrote: > >> Oh, wait, negotiate is built into CoSign, sorry, I misread that >> part. > > Hmm, no, wait, now I'm reading that you have to run mod_auth_kerb too, > and that requires Negotiate-Auth, and the negotiate keyword in cosign > just checks REMOTE_USER set by mod_auth_kerb, it doesn't do the > negotiate itself.
Run the cosign CGI at two different URLs. Protect one of the two locations with mod_auth_kerb. Use this location for scripts, and the other location for normal browser usage. This means that your scripts have to be written so that they authenticate to cosign first, before attempting to use protected resources, but if you are writing the scripts that shouldn't be too great a hardship. Cheers, Simon > ------------------------------------------------------------------------------ Got Input? Slashdot Needs You. Take our quick survey online. Come on, we don't ask for help often. Plus, you'll get a chance to win $100 to spend on ThinkGeek. http://p.sf.net/sfu/slashdot-survey _______________________________________________ Cosign-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/cosign-discuss
