[OpenAFS] Help enabling AFS authentication via Apache (on Linux)
Neulinger, Nathan
nneul@umr.edu
Tue, 21 Jan 2003 13:53:39 -0600
Ah, you're talking about fully authenticated access to AFS, not just
password checking, similar to what the afsweb stuff does.
Have not done anything with that myself.=20
It will definately matter krb5/ka since you'll have to code in the
password access. Although you MIGHT be able to rig it up with PAM, but I
can't help you there. 10 foot poles and all..=20
-- Nathan
------------------------------------------------------------
Nathan Neulinger EMail: nneul@umr.edu
University of Missouri - Rolla Phone: (573) 341-4841
Computing Services Fax: (573) 341-4216
> -----Original Message-----
> From: Paul Blackburn [mailto:mpb@est.ibm.com]=20
> Sent: Tuesday, January 21, 2003 1:51 PM
> To: Neulinger, Nathan
> Cc: openafs-info@openafs.org
> Subject: Re: [OpenAFS] Help enabling AFS authentication via=20
> Apache (on Linux)
>=20
>=20
>=20
> Neulinger, Nathan wrote:
>=20
> >Clarify... authenticated access to afs directories? 'basic auth' for
> >.htaccess? or something else? w/ or w/o krb5?
> >
> > =20
> >
> OK, let's see if this clarifies:
>=20
> a) user browses to https://afswebserver.domain.whatever/
> b) user is prompted for a AFS login name and password
> (afswebserver is a client of AFS cell "/afs/domain.whatever/")
> c) user's webserver connection then has authentication to=20
> access his/her=20
> AFS filespace.
> Webserver shows a "directory listing" of /afs/domain.whatever/.
> d) user is then able to navigate through the directory listing and=20
> list/download.
>=20
> In addition, other people may connect and authenticate to the same
> web server concurrently and have their own separate=20
> authentication (PAG).
>=20
> I don't think it should matter if the cell uses default AFS=20
> kerberos or=20
> krb5.
> --
> cheers
> paul http://acm.org/~mpb
>=20
>=20