-
Suggestion
-
Resolution: Fixed
-
None
An apache authentication module needs to be programmed to support Crowd.
This will involve writing a C/C++ client that will call the /crowd/services/SecurityServer?wsdl and authenticate a user through http-form based authentication.
The SecurityServerClient can serve as a good starting point for how to connect to the security server, get a valid authentication token and then query if the user has a valid username and password.
This following how-tos describes how the LDAP module works, which would be similar to the Crowd Java integration libraries. Based on the path/host/url Apache would use Crowd to validate through a positive authentication if the user is allowed to access a particular resource. Once the authentication is verified, no validation between request would be necessary as apache can handle if this is a continuous web session.
[CWD-97] Apache mod Crowd integration
Workflow | Original: JAC Suggestion Workflow [ 3362926 ] | New: JAC Suggestion Workflow 3 [ 3625948 ] |
Status | Original: RESOLVED [ 5 ] | New: Closed [ 6 ] |
Workflow | Original: Simplified Crowd Development Workflow v2 [ 1392895 ] | New: JAC Suggestion Workflow [ 3362926 ] |
Issue Type | Original: New Feature [ 2 ] | New: Suggestion [ 10000 ] |
Status | Original: Closed [ 6 ] | New: Resolved [ 5 ] |
Workflow | Original: Crowd Development Workflow v2 [ 272243 ] | New: Simplified Crowd Development Workflow v2 [ 1392895 ] |
Workflow | Original: Feature Request Workflow [ 173508 ] | New: Crowd Development Workflow v2 [ 272243 ] |
Workflow | Original: jira [ 65017 ] | New: Feature Request Workflow [ 173508 ] |
Assignee | Original: Mike Cannon-Brookes [ mike@atlassian.com ] | |
Status | Original: Resolved [ 5 ] | New: Closed [ 6 ] |
Comment |
[ Initial version complete.
File bugs with as new issues. ] |
It appears that Firefox has a bug (https://bugzilla.mozilla.org/show_bug.cgi?id=57342) that corrupts the downloading of .gz files (it attempts to uncompress and then recompress them). What you actually get on disk is a file that has been gzipped twice.
So, to work around the problem:
a)
gunzip Apache-CrowdAuth-0.03.tar.gz followed by
tar xzvf Apache-CrowdAuth-0.03.tar
(note the 'z' in the arguments to tar)
b) use wget instead
wget http://confluence.atlassian.com/download/attachments/9961902/Apache-CrowdAuth-0.03.tar.gz