[prev in list] [next in list] [prev in thread] [next in thread] 

List:       apache-modperl
Subject:    subversion, kerberos, single-sign-on, stacked handlers
From:       David Naughton <naughton () umn ! edu>
Date:       2006-05-19 19:21:39
Message-ID: 20060519192139.GB28108 () umn ! edu
[Download RAW message or body]

I'm trying to use my University's central, single-sign-on authentication
services to control access to a Subversion repository. This central auth
takes different forms for web-browser and non-web-browser applications.
The web-browser form is very similar to pubcookie and I already have
Perl code that implements it.  The preferred form for non-web-browser
applications is Kerberos using the Negotiate method, or, failing that, I
can use Radius instead.

Since subversion allows access via both web-browser and non-web-browser
apps, I'd like to use stacked handlers to perform authen using the
preferred method in each case.

So, here are my questions: 

Can I stack my PerlAuthenHandler with mod_auth_kerb, or must all stacked
handlers be Perl handlers?

If the first, how do I do it?

If the second, I'm unable to find an Apache2 Authen module for Kerberos
that supports the Negotiate method. Did I miss it, is someone working on
one, or would I have to write it myself?

Thank you!

David Naughton
[prev in list] [next in list] [prev in thread] [next in thread]