##@file # Cross domain extension for Lemonldap::NG portals. ##@class # Cross domain extension for Lemonldap::NG portals. package Lemonldap::NG::Portal::CDA; use strict; use Lemonldap::NG::Portal::SharedConf qw(:all); our $VERSION = '0.04'; use base ('Lemonldap::NG::Portal::SharedConf'); *EXPORT_OK = *Lemonldap::NG::Portal::SharedConf::EXPORT_OK; *EXPORT_TAGS = *Lemonldap::NG::Portal::SharedConf::EXPORT_TAGS; *EXPORT = *Lemonldap::NG::Portal::SharedConf::EXPORT; ################## # OVERLOADED SUB # ################## ## @method int existingSession() # Existing sessions must not be reauthenticated in CDA usage # @return Lemonldap::NG::Portal error code sub existingSession { PE_DONE; } ## @method int autoRedirect() # Same as Lemonldap::NG::Portal::SharedConf::autoRedirect(), but add ID in URL # if the user was redirected to the portal from another domain. # @return Lemonldap::NG::Portal error code sub autoRedirect { my $self = shift; my $tmp = $self->{domain}; my $cookieName = $self->{cookieName}; if ( $self->{urldc} and $self->{urldc} !~ m#^https?://[^/]*$tmp/#oi and $self->{id} and $self->{urldc} !~ m#[\?&]?$cookieName=\w+&?#oi ) { $self->{urldc} .= ( $self->{urldc} =~ /\?{1}/oi ) ? '&' : '?'; $self->{urldc} .= $cookieName . "=" . $self->{id}; } return $self->SUPER::autoRedirect(@_); } 1; __END__ =head1 NAME Lemonldap::NG::Portal::CDA - Perl extension for building Lemonldap::NG compatible portals with Cross Domain Authentication. =head1 SYNOPSIS use Lemonldap::NG::Portal::SharedConf; my $portal = new Lemonldap::NG::Portal::SharedConf( { configStorage => { type => 'DBI', dbiChain => "dbi:mysql:...", dbiUser => "lemonldap", dbiPassword => "password", dbiTable => "lmConfig", }, } ); if($portal->process()) { # Write here the menu with CGI methods. This page is displayed ONLY IF # the user was not redirected here. print $portal->header('text/html; charset=utf8'); # DON'T FORGET THIS (see L) print "..."; # or redirect the user to the menu print $portal->redirect( -uri => 'https://portal/menu'); } else { # Write here the html form used to authenticate with CGI methods. # $portal->error returns the error message if athentification failed # Warning: by defaut, input names are "user" and "password" print $portal->header('text/html; charset=utf8'); # DON'T FORGET THIS (see L) print "..."; print ''; } Modify your httpd.conf: SSLVerifyClient require SSLOptions +ExportCertData +CompatEnvVars +StdEnvVars =head1 DESCRIPTION This library just overload few methods of L to add Cross Domain Authentication. Handlers that are not used in the same domain than the portal must inherit from L. See L for usage and other methods. =head1 SEE ALSO L, L, L, http://wiki.lemonldap.objectweb.org/xwiki/bin/view/NG/Presentation =head1 AUTHOR Xavier Guimard, Ex.guimard@free.frE =head1 BUG REPORT Use OW2 system to report bug or ask for features: L =head1 DOWNLOAD Lemonldap::NG is available at L =head1 COPYRIGHT AND LICENSE Copyright (C) 2007 by Xavier Guimard Ex.guimard@free.frE This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself, either Perl version 5.8.4 or, at your option, any later version of Perl 5 you may have available. =cut