Hello,
I've implemented authentication in my web server using a mod_perl
authentication handler.
I now have the following in my httpd.conf:
PerlAuthenHandler Apache2::AuthenDBMCache Apache2::AuthenMSAD
PerlSetVar MSADDomain mydomain
Require valid-user
(The two modules I found on CPAN, and they're just right for what I needed)
This works perfectly. The authentication handler checks the username
and password, and allows or denies access.
Require user user1 user2
works fine too.
Now I want to do a bit more. I want to use:
Require group department1 department2
The problem is that I don't want to use a group file. I want to use a
perl module to check group membership. Specifically I want to check
the "department" property in our active directory, and use this to
allow or deny access.
Writing Perl code that gets this info from the AD is not the problem.
My problem is that its not clear to me how to tie this code in the
whole apache processing.
Do I need to write a PerlAuthzHandler? Or something else?
apache is 2.0.59, mod_perl is 2.0
Thanks in advance,
Krist van Besien
--
[EMAIL PROTECTED]
Bremgarten b. Bern, Switzerland
--
A: It reverses the normal flow of conversation.
Q: What's wrong with top-posting?
A: Top-posting.
Q: What's the biggest scourge on plain text email discussions?
