|
Apache::Wyrd::Services::LoginServer - Login service For Auth object |
Apache::Wyrd::Services::LoginServer - Login service For Auth object
<Location /logins/login.html>
SetHandler perl-script
PerlHandler Apache::Wyrd::Services::LoginServer
PerlSetVar TicketDBFile /var/run/www/ticketfile.db
PerlSetVar Debug 0
</Location>
The Login Server provides SSL encryption for a login to a
Apache::Wyrd::Auth module when it must run on an insecure port. This
behavior is described in the documentation for
Apache::Wyrd::Services::Auth.
It uses the TicketPad module to keep a cache of 100 recent tickets. If presented with a POST request with a 'key' parameter, it stores the key and returns OK. If presented with an authorization set (on_success, [on_fail], user, password, ticket), it returns the data to the server via a redirected GET request with the challenge parameter set to the encrypted data.
The TicketPad has a limited capacity, and old tickets are removed as new ones are added. If the authorization request is so stale it asks for a ticket that has been discarded, the LoginServer returns the status HTTP_SERVICE_UNAVAILABLE.
All other accesses fail with an AUTH_REQUIRED
(format: (returns) name (arguments after self))
handler (Apache)
Size of the ticketpad is not configurable.
Barry King <wyrd@nospam.wyrdwright.com>
Copyright 2002-2004 Wyrdwright, Inc. and licensed under the GNU GPL.
See LICENSE under the documentation for Apache::Wyrd.
|
Apache::Wyrd::Services::LoginServer - Login service For Auth object |