2009-09-23 14:42:34 +02:00
|
|
|
## @file
|
2009-09-27 09:54:05 +02:00
|
|
|
# Proxy authentication module
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
## @class
|
2009-09-27 09:54:05 +02:00
|
|
|
# Proxy authentication module: It simply call another Lemonldap::NG portal by
|
2009-09-23 14:42:34 +02:00
|
|
|
# SOAP using credentials
|
2009-09-27 09:54:05 +02:00
|
|
|
package Lemonldap::NG::Portal::AuthProxy;
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
use strict;
|
2009-09-27 09:54:05 +02:00
|
|
|
use Lemonldap::NG::Portal::_Proxy;
|
2009-09-23 14:42:34 +02:00
|
|
|
use Lemonldap::NG::Portal::_WebForm;
|
|
|
|
use Lemonldap::NG::Portal::Simple;
|
2009-09-27 09:54:05 +02:00
|
|
|
use base qw(Lemonldap::NG::Portal::_WebForm Lemonldap::NG::Portal::_Proxy);
|
2009-09-23 14:42:34 +02:00
|
|
|
|
2012-03-24 15:47:47 +01:00
|
|
|
our $VERSION = '1.2.0';
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
## @apmethod int authInit()
|
2009-09-27 09:54:05 +02:00
|
|
|
# Call Lemonldap::NG::Portal::_Proxy::proxyInit();
|
2009-09-23 14:42:34 +02:00
|
|
|
# @return Lemonldap::NG::Portal constant
|
2009-09-27 09:54:05 +02:00
|
|
|
*authInit = *Lemonldap::NG::Portal::_Proxy::proxyInit;
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
## @apmethod int authenticate()
|
2009-09-27 09:54:05 +02:00
|
|
|
# Call Lemonldap::NG::Portal::_Proxy::proxyQuery()
|
2009-09-23 14:42:34 +02:00
|
|
|
# @return Lemonldap::NG::Portal constant
|
2009-09-27 09:54:05 +02:00
|
|
|
*authenticate = *Lemonldap::NG::Portal::_Proxy::proxyQuery;
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
## @apmethod int setAuthSessionInfo()
|
2009-09-27 09:54:05 +02:00
|
|
|
# Call Lemonldap::NG::Portal::_Proxy::setSessionInfo()
|
2009-09-23 14:42:34 +02:00
|
|
|
# @return Lemonldap::NG::Portal constant
|
2009-09-27 09:54:05 +02:00
|
|
|
*setAuthSessionInfo = *Lemonldap::NG::Portal::_Proxy::setSessionInfo;
|
2009-09-23 14:42:34 +02:00
|
|
|
|
2010-09-01 10:59:39 +02:00
|
|
|
## @apmethod int authFinish()
|
|
|
|
# Does nothing.
|
|
|
|
# @return Lemonldap::NG::Portal constant
|
|
|
|
sub authFinish {
|
|
|
|
PE_OK;
|
|
|
|
}
|
|
|
|
|
|
|
|
## @apmethod int authLogout()
|
|
|
|
# Does nothing
|
|
|
|
# @return Lemonldap::NG::Portal constant
|
|
|
|
sub authLogout {
|
|
|
|
PE_OK;
|
|
|
|
}
|
|
|
|
|
|
|
|
## @apmethod boolean authForce()
|
|
|
|
# Does nothing
|
|
|
|
# @return result
|
|
|
|
sub authForce {
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2012-03-24 15:47:47 +01:00
|
|
|
## @method string getDisplayType
|
|
|
|
# @return display type
|
|
|
|
sub getDisplayType {
|
|
|
|
return "standardform";
|
|
|
|
}
|
|
|
|
|
2009-09-23 14:42:34 +02:00
|
|
|
1;
|
|
|
|
|
|
|
|
__END__
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
2010-01-03 09:09:59 +01:00
|
|
|
=encoding utf8
|
|
|
|
|
2009-09-27 09:54:05 +02:00
|
|
|
Lemonldap::NG::Portal::AuthProxy - Authentication module for Lemonldap::NG
|
2009-09-23 14:42:34 +02:00
|
|
|
that delegates authentication to a remote Lemonldap::NG portal.
|
|
|
|
|
2009-10-12 17:03:29 +02:00
|
|
|
The difference with Remote authentication module is that the client will never
|
|
|
|
be redirect to the main Lemonldap::NG portal. This configuration is usable if
|
|
|
|
you want to expose your internal SSO to another network (DMZ).
|
|
|
|
|
2009-09-23 14:42:34 +02:00
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
2009-09-23 15:35:19 +02:00
|
|
|
use Lemonldap::NG::Portal::SharedConf;
|
|
|
|
my $portal = new Lemonldap::NG::Portal::SharedConf(
|
2009-09-23 14:42:34 +02:00
|
|
|
|
2009-09-23 15:35:19 +02:00
|
|
|
# REQUIRED PARAMETERS
|
2009-09-27 09:54:05 +02:00
|
|
|
authentication => 'Proxy',
|
|
|
|
userDB => 'Proxy',
|
2009-10-12 17:03:29 +02:00
|
|
|
soapAuthService => 'https://auth.internal.network/',
|
2009-09-23 15:35:19 +02:00
|
|
|
|
|
|
|
# OTHER PARAMETERS
|
|
|
|
# remoteCookieName (default: same name)
|
|
|
|
remoteCookieName => 'lemonldap',
|
|
|
|
# soapSessionService (default ${soapAuthService}index.pl/sessions)
|
|
|
|
soapSessionService =>
|
2009-10-12 17:03:29 +02:00
|
|
|
'https://auth2.internal.network/index.pl/sessions',
|
2009-09-23 14:42:34 +02:00
|
|
|
);
|
|
|
|
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
|
|
|
Authentication module for Lemonldap::NG portal that forward credentials to a
|
2009-09-23 15:35:19 +02:00
|
|
|
remote Lemonldap::NGportal using SOAP request. Note that the remote portal must
|
|
|
|
accept SOAP requests ("Soap=>1").
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
=head1 SEE ALSO
|
|
|
|
|
2010-10-26 11:34:00 +02:00
|
|
|
L<http://lemonldap-ng.org/>
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
=head1 AUTHOR
|
|
|
|
|
2013-01-31 06:33:10 +01:00
|
|
|
=over
|
|
|
|
|
|
|
|
=item Clement Oudot, E<lt>clem.oudot@gmail.comE<gt>
|
|
|
|
|
|
|
|
=item Xavier Guimard, E<lt>x.guimard@free.frE<gt>
|
|
|
|
|
|
|
|
=back
|
|
|
|
|
|
|
|
=head1 BUG REPORT
|
|
|
|
|
|
|
|
Use OW2 system to report bug or ask for features:
|
|
|
|
L<http://jira.ow2.org>
|
|
|
|
|
|
|
|
=head1 DOWNLOAD
|
|
|
|
|
|
|
|
Lemonldap::NG is available at
|
|
|
|
L<http://forge.objectweb.org/project/showfiles.php?group_id=274>
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
=head1 COPYRIGHT AND LICENSE
|
|
|
|
|
2013-01-31 06:33:10 +01:00
|
|
|
=over
|
|
|
|
|
|
|
|
=item Copyright (C) 2009, 2010 by Xavier Guimard, E<lt>x.guimard@free.frE<gt>
|
|
|
|
|
|
|
|
=item Copyright (C) 2010, 2012 by Clement Oudot, E<lt>clem.oudot@gmail.comE<gt>
|
|
|
|
|
|
|
|
=back
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
This library is free software; you can redistribute it and/or modify
|
2013-01-31 06:33:10 +01:00
|
|
|
it under the terms of the GNU General Public License as published by
|
|
|
|
the Free Software Foundation; either version 2, or (at your option)
|
|
|
|
any later version.
|
|
|
|
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
GNU General Public License for more details.
|
|
|
|
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
|
|
along with this program. If not, see L<http://www.gnu.org/licenses/>.
|
2009-09-23 14:42:34 +02:00
|
|
|
|
|
|
|
=cut
|