Quoting Emiliano <[EMAIL PROTECTED]>:
> Chen Shiyuan wrote:
>
> > Hmmm... what I was thinking of is if it is possible for Migard
> to accept
> > whatever username/password that the web server has
> authenticated.
>
> Not impossible, but not trivial. For one, the user database would
> need
> to have something to support sitegroups (=multiple user databases
> in one database). Second, since Apache has no means to force auth
> 'from
> within', mod_midgard does this entirely by itself and so doesn't
> use the
> normal auth/authz handlers. Besides that, I think you'd need LDAP
> specific
> code in mod_midgard to fetch the uid that goes with the
> username/password.
Hmm... true...
Cos what I was thinking of is along the line of :-
1. Apache will authenticate the user by some means.
2. Midgard get's the username from the REMOTE_USER variable.
3. Midgard checks up with it's own user database to see what
access/permissions this username have on the website.
4. and life goes on...
Why does midgard want to fetch the uid? can it just stick to the
username?
Thanks!
--
This is The Midgard Project's mailing list. For more information,
please visit the project's web site at http://www.midgard-project.org
To unsubscribe the list, send an empty email message to address
[EMAIL PROTECTED]
