GSP
Quick Navigator

Search Site

Unix VPS
A - Starter
B - Basic
C - Preferred
D - Commercial
MPS - Dedicated
Previous VPSs
* Sign Up! *

Support
Contact Us
Online Help
Handbooks
Domain Status
Man Pages

FAQ
Virtual Servers
Pricing
Billing
Technical

Network
Facilities
Connectivity
Topology Map

Miscellaneous
Server Agreement
Year 2038
Credits
 

USA Flag

 

 

Man Pages


Manual Reference Pages  -  OPENXPKI::SERVER::AUTHENTICATION::CLIENTSSO (3)

.ds Aq ’

Name

OpenXPKI::Server::Authentication::ClientSSO - support for client based SSO.

CONTENTS

Description

This is the class which supports OpenXPKI with an authentication method via an SSO mechanism on the client side of the daemon. This can be for example an installed Shibboleth system on the web server. Please notice that you must trust the web server in this case. The parameters are passed as a hash reference.

Functions

    new

is inherited from OpenXPKI::Server::Authentication::External

    login

returns (user, role, service ready message) triple if login was successful, (undef, undef, {}) otherwise. The message which is supplied as a parameter to the function should contain at minimum LOGIN as parameter. You can supply this module with preconfigured role from the client SSO via the parameter pseudo_role. This parameter can be processed on the server side via a regex or a command to check its sanity.

It is higly recommended to take a look at the source code of this module before you blindly trust a client’s SSO mechanism. Additionally you have to understand that the server in this case must trust the client or the wrapper around the client.

Search for    or go to Top of page |  Section 3 |  Main Index


perl v5.20.3 OPENXPKI::SERVER::AUTHENTICATION::CLIENTSSO (3) 2016-04-03

Powered by GSP Visit the GSP FreeBSD Man Page Interface.
Output converted with manServer 1.07.