Hello Henk, One of my colleague's is implementing this for a project. I just asked him if the company he is doing it for is willing to donate the solution to us. He will ask it. What I understood from him is that it is almost the same as the http-method of the cloudtag at the moment. The server sends a 401 with a special header. IE will try again with the user info. The only thing to do is to create an authentication class which checks the user info with the domain controller. If I get my hands on the code then you will have it too :-)
Nico > -----Oorspronkelijk bericht----- > Van: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Namens Henk Hangyi > Verzonden: dinsdag 13 juli 2004 19:48 > Aan: [EMAIL PROTECTED] > Onderwerp: MMBase authentication by using WinNT user info. > > > Hi, > > Did anybody already write an MMBase authentication > implementation which uses the WinNT user information? > > I know that the VPRO uses the webmail functionality of > Exchange to this end. As far as i understand it is that (1) > they put an authentication-page on their webmail server and > use WinNT to give a certain group of NT users access rights > on this page, then (2) if an NT user requests a secured > MMBase page first the MMBase page checks if this user is > allowed to view the authentication-page if so he is logged on > to MMBase, if not access to MMBase is denied. > > It seems to me that a more direct link between MMBase > authentication and NT user info should be possible (or is > Windows really that closed ? ) > > Thanks in advance for any info on this point. > > Regards, Henk > > P.s. What is not clear to me is how the VPRO implementation > is able to check from the client-browser whether a user is > able to view an authentication page. Hope to find out soon ... > >
