PASSSL Authentication
- Warning
- This product has not had a release in over 1 year and may no longer be maintained.
A PAS module which uses SSL user certificates rather than passwords to authenticate users.
Project Description
This package is a cleaned up version of my old gruf_ssl package, which has been in use at Fermilab now for a few years.
We're using it with Plone behind an Apache proxy, who passes in the SSL_CLIENT_S_DN and SSL_CLIENT_I_DN values as http headers when it proxies. This requires a few rules like:
# add headers for ssl cert stuffto get the SSL header info through to the proxied Plone site.
RewriteCond %{ENV:did_ssl} !="done"
RewriteRule (.*) $1 [env=s_dn:%{SSL:SSL_CLIENT_S_DN},env=i_dn:%{SSL:SSL_CLIENT_I_DN},env=did_ssl:done]
RequestHeader set "X-s-dn" "%{s_dn}e"
RequestHeader set "X-i-dn" "%{i_dn}e"
Current Release
PASSSL Authentication 1.0.4
Released Mar 10, 2009 — tested with Plone 2.5
MInor bugfixes for regular expressions with plus signs in them, separate mappings templates for ZMI and Plone mode.
More about this release…
-
Get
PASSSL Authentication
for
all platforms
- Correct source tarball
- If you are using Plone 3.2 or higher, you probably want to install this product with buildout. See our tutorial on installing add-on products with buildout for more information.
All Releases
| Version | Released | Description | Compatibility | Status |
|---|---|---|---|---|
| 1.0.4 | Mar 10, 2009 | MInor bugfixes for regular expressions with plus signs in them, separate mappings templates for ZMI and Plone mode. More about this release… |
Plone 2.5
|
final |
| 1.0 | Initial PAS release, no more monkeypatching of GRUF. More about this release… |
Plone 2.5.2
|
alpha |
