Authentication | Users | Password |
---|---|---|
✔ | ✔ |
LL::NG Slave backend relies on HTTP headers to retrieve user login and/or attributes.
It allows one to put LL::NG::portal behind another web SSO, or behind a SSL hardware to delegate SSL authentication to that hardware.
In Manager, go in General Parameters
> Authentication modules
and choose Slave for authentication or users module.
Then, go in Slave parameters
:
You have then to declare HTTP headers exported by the main SSO (in Exported Variables). Example :
Key (LL::NG name) | Value (HTTP header name) |
---|---|
uid | Auth-User |
User-Email |
Control header name: control
Control header content: password
curl -k https://127.0.0.1:19876 -H 'CN: dwho' -H 'Host: auth.example.com' -H 'Accept: application/json' -H 'control: password' -d "lmAuth=2_Slave" | json_pp
{ "result" : 1, "error" : 0, "id_http" : "5237ce20290d6110915a05d62f52618955b5f71b6dd3424481372ad419a5b122", "id" : "16fec9bd7a0523328568ca919ee0a6d6e329832f6c302bf36b106db92b5ec23d" }
See also exported variables configuration.