[opensuse] Passing credentials between apache2 servers?
Hi, I'm going to setup two web servers, both will be authenticating by ldap, this is how I would like both to behave: Case 1: User access directly a page from server1, apache2 asks for user & password. Case 2: User access directly a page from server2, apache2 asks for user & password. Case 3: User access directly webappA on server1, apache2 asks for user & password, then then clicks a link on webappA to webappB on server2 and apache2 on server2 lets the user work WITHOUT asking for user & password and STILL sees him as Joe-the-authenticated user. Is it possible for apache2 running on server1 to pass the credentials to server2?, can this be done? Ciro -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Ciro Iriarte wrote:
Hi,
I'm going to setup two web servers, both will be authenticating by ldap, this is how I would like both to behave:
Case 1: User access directly a page from server1, apache2 asks for user & password. Case 2: User access directly a page from server2, apache2 asks for user & password. Case 3: User access directly webappA on server1, apache2 asks for user & password, then then clicks a link on webappA to webappB on server2 and apache2 on server2 lets the user work WITHOUT asking for user & password and STILL sees him as Joe-the-authenticated user.
Is it possible for apache2 running on server1 to pass the credentials to server2?, can this be done?
This type of problem is usually taken care of by session-persistence in your load-balancer. I'm not sure, but I don't think apache has got anything that will help you. /Per Jessen, Zürich -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
2008/6/20 Per Jessen <per@computer.org>:
Ciro Iriarte wrote:
Hi,
I'm going to setup two web servers, both will be authenticating by ldap, this is how I would like both to behave:
Case 1: User access directly a page from server1, apache2 asks for user & password. Case 2: User access directly a page from server2, apache2 asks for user & password. Case 3: User access directly webappA on server1, apache2 asks for user & password, then then clicks a link on webappA to webappB on server2 and apache2 on server2 lets the user work WITHOUT asking for user & password and STILL sees him as Joe-the-authenticated user.
Is it possible for apache2 running on server1 to pass the credentials to server2?, can this be done?
This type of problem is usually taken care of by session-persistence in your load-balancer. I'm not sure, but I don't think apache has got anything that will help you.
/Per Jessen, Zürich
I'm not using a load balancer... They are just two standalone web servers running different applications.. I was almost sure it hasn't... Ciro
Ciro Iriarte wrote:
I'm not using a load balancer... They are just two standalone web servers running different applications.. I was almost sure it hasn't...
Maybe it's worth doing some googling for "single sign on". /Per Jessen, Zürich -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
2008/6/20 Per Jessen <per@computer.org>:
Ciro Iriarte wrote:
I'm not using a load balancer... They are just two standalone web servers running different applications.. I was almost sure it hasn't...
Maybe it's worth doing some googling for "single sign on".
/Per Jessen, Zürich
I would really like to take kerberos and AD out of the equation.... O well.... Ciro N�����r��y隊Z)z{.�ﮞ˛���m�)z{.��+�Z+i�b�*'jW(�f�vǦj)h���Ǿ��i����� ��
Ciro Iriarte wrote:
2008/6/20 Per Jessen <per@computer.org>:
Ciro Iriarte wrote:
I'm not using a load balancer... They are just two standalone web servers running different applications.. I was almost sure it hasn't...
Maybe it's worth doing some googling for "single sign on".
/Per Jessen, Zürich
I would really like to take kerberos and AD out of the equation.... O well....
Ciro
Well, it depends on how complex your authentication scheme is. Or you can always make up your own distributed setup. /Per Jessen, Zürich -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
participants (2)
-
Ciro Iriarte -
Per Jessen