At work, we are starting to set up and roll out a CAS framework. (http://www.ja-sig.org/products/cas/) Naturally, we see Mon as an application that we would love to make accessible remotely with the correct permissions. We can handle a subset by running the CGI on the same host and using SSL, but what we'd like to get eventually is the ability to automatically authenticate users.
This can be partially accomplished using mod_cas which will authenticate the user against the external CAS server, and then return the auth'd username as the REMOTE_USER variable. This works well for "readonly" mode where service state can be displayed. However, for authentication it appears as if Mon and mon.cgi are both requiring the name and DES encrypted password be passed around. I'm curious if anyone has looked at modifying the Mon auth routines and/or those of mon.cgi in a manner that would allow this abstracted third party auth style. Dallas -- pub 1024D/695B2F41 2001-05-30 Dallas Wisehaupt (sign) <[EMAIL PROTECTED]> <http://smog.com/publickeys/keys.html> Member: USENIX and SAGE _______________________________________________ mon mailing list [email protected] http://linux.kernel.org/mailman/listinfo/mon
