On Mon, Nov 10, 2003 at 12:58:33PM +0100, Daniel Struck wrote: > Hello, > > > I want to ask if the following setup is possible: > > > Clients will be authenticated towards apache with x509 certificates (mod_ssl). > > Would it now be possible to give authenticated clients a kerberos ticket which could > be read out in php/perl? > I would like to use this ticket to authenticate the client towards a database like > postgresql. > I imagine something like http://modauthkerb.sourceforge.net/ along with SSLOptions +FakeBasicAuth could do the trick (YMMV - I don't know enough about Kerberos to know wether that type of usernames would be a problem).
http://www.modssl.org/docs/2.8/ssl_reference.html#ToC21 vh Mads Toftum -- Speaking at ApacheCon 2003 - http://ApacheCon.com/ T03, "Apache 2 mod_ssl tutorial" (3h) WE03, "Troubleshooting Apache configurations" WE11, "Apache mod_rewrite, the Swiss Army Knife of URL manipulation" ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
