Hi all - I've been looking into designs for a mod_perl cookie-based "single sign-on" kind of authentication system that would use a central authentication server across multiple products. I've been looking at things like Apache::TicketAccess, Apache::AuthTicket, Authen::Ticket, etc., but they all appear to be designed around generating cookies for a single domain, while in my case I've got products in multiple domains, e.g.: product1.domain.com product2.domain.com product3.otherdomain.com
I'm figuring I'd need to do some extra redirection and cookie translation so that I can have (e.g. to get to product3) ticketmaster.domain.com do the autorization, set a master "I'm authenticated" cookie, redirect to ticketslave.otherdomain.com, which would have to recognize the master "domain.com" authentication info and set a "otherdomain.com" authentication cookie that product3 will recognize... Does anyone know of existing modules out there that might do what I need, or have general ideas on how to approach the problem? Thanks! Larry Leszczynski -- Report problems: http://perl.apache.org/bugs/ Mail list info: http://perl.apache.org/maillist/modperl.html List etiquette: http://perl.apache.org/maillist/email-etiquette.html
