2009-09-23 14:42:34 +02:00
|
|
|
## @file
|
2009-09-27 09:54:05 +02:00
|
|
|
# Proxy authentication module
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
## @class
|
2009-09-27 09:54:05 +02:00
|
|
|
# Proxy authentication module: It simply call another Lemonldap::NG portal by
|
2009-09-23 14:42:34 +02:00
|
|
|
# SOAP using credentials
|
2009-09-27 09:54:05 +02:00
|
|
|
package Lemonldap::NG::Portal::AuthProxy;
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
use strict;
|
2009-09-27 09:54:05 +02:00
|
|
|
use Lemonldap::NG::Portal::_Proxy;
|
2009-09-23 14:42:34 +02:00
|
|
|
use Lemonldap::NG::Portal::_WebForm;
|
|
|
|
use Lemonldap::NG::Portal::Simple;
|
2009-09-27 09:54:05 +02:00
|
|
|
use base qw(Lemonldap::NG::Portal::_WebForm Lemonldap::NG::Portal::_Proxy);
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
our $VERSION = '0.1';
|
|
|
|
|
|
|
|
## @apmethod int authInit()
|
2009-09-27 09:54:05 +02:00
|
|
|
# Call Lemonldap::NG::Portal::_Proxy::proxyInit();
|
2009-09-23 14:42:34 +02:00
|
|
|
# @return Lemonldap::NG::Portal constant
|
2009-09-27 09:54:05 +02:00
|
|
|
*authInit = *Lemonldap::NG::Portal::_Proxy::proxyInit;
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
## @apmethod int authenticate()
|
2009-09-27 09:54:05 +02:00
|
|
|
# Call Lemonldap::NG::Portal::_Proxy::proxyQuery()
|
2009-09-23 14:42:34 +02:00
|
|
|
# @return Lemonldap::NG::Portal constant
|
2009-09-27 09:54:05 +02:00
|
|
|
*authenticate = *Lemonldap::NG::Portal::_Proxy::proxyQuery;
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
## @apmethod int setAuthSessionInfo()
|
2009-09-27 09:54:05 +02:00
|
|
|
# Call Lemonldap::NG::Portal::_Proxy::setSessionInfo()
|
2009-09-23 14:42:34 +02:00
|
|
|
# @return Lemonldap::NG::Portal constant
|
2009-09-27 09:54:05 +02:00
|
|
|
*setAuthSessionInfo = *Lemonldap::NG::Portal::_Proxy::setSessionInfo;
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
1;
|
|
|
|
|
|
|
|
__END__
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
2010-01-03 09:09:59 +01:00
|
|
|
=encoding utf8
|
|
|
|
|
2009-09-27 09:54:05 +02:00
|
|
|
Lemonldap::NG::Portal::AuthProxy - Authentication module for Lemonldap::NG
|
2009-09-23 14:42:34 +02:00
|
|
|
that delegates authentication to a remote Lemonldap::NG portal.
|
|
|
|
|
2009-10-12 17:03:29 +02:00
|
|
|
The difference with Remote authentication module is that the client will never
|
|
|
|
be redirect to the main Lemonldap::NG portal. This configuration is usable if
|
|
|
|
you want to expose your internal SSO to another network (DMZ).
|
|
|
|
|
2009-09-23 14:42:34 +02:00
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
2009-09-23 15:35:19 +02:00
|
|
|
use Lemonldap::NG::Portal::SharedConf;
|
|
|
|
my $portal = new Lemonldap::NG::Portal::SharedConf(
|
2009-09-23 14:42:34 +02:00
|
|
|
|
2009-09-23 15:35:19 +02:00
|
|
|
# REQUIRED PARAMETERS
|
2009-09-27 09:54:05 +02:00
|
|
|
authentication => 'Proxy',
|
|
|
|
userDB => 'Proxy',
|
2009-10-12 17:03:29 +02:00
|
|
|
soapAuthService => 'https://auth.internal.network/',
|
2009-09-23 15:35:19 +02:00
|
|
|
|
|
|
|
# OTHER PARAMETERS
|
|
|
|
# remoteCookieName (default: same name)
|
|
|
|
remoteCookieName => 'lemonldap',
|
|
|
|
# soapSessionService (default ${soapAuthService}index.pl/sessions)
|
|
|
|
soapSessionService =>
|
2009-10-12 17:03:29 +02:00
|
|
|
'https://auth2.internal.network/index.pl/sessions',
|
2009-09-23 14:42:34 +02:00
|
|
|
);
|
|
|
|
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
|
|
|
Authentication module for Lemonldap::NG portal that forward credentials to a
|
2009-09-23 15:35:19 +02:00
|
|
|
remote Lemonldap::NGportal using SOAP request. Note that the remote portal must
|
|
|
|
accept SOAP requests ("Soap=>1").
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
=head1 SEE ALSO
|
|
|
|
|
|
|
|
L<http://lemonldap.objectweb.org/>
|
2009-09-27 09:54:05 +02:00
|
|
|
L<http://wiki.lemonldap.objectweb.org/xwiki/bin/view/NG/AuthProxy>
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
=head1 AUTHOR
|
|
|
|
|
|
|
|
Xavier Guimard, E<lt>x.guimard@free.frE<gt>
|
|
|
|
|
|
|
|
=head1 COPYRIGHT AND LICENSE
|
|
|
|
|
|
|
|
Copyright (C) 2009 by Xavier Guimard
|
|
|
|
|
|
|
|
This library is free software; you can redistribute it and/or modify
|
|
|
|
it under the same terms as Perl itself, either Perl version 5.10.0 or,
|
|
|
|
at your option, any later version of Perl 5 you may have available.
|
|
|
|
|
|
|
|
=cut
|