Active Directory kerberos token and simpleSAMLphp
AbuNawfal
i have installed the simpleSAMLphp and setup it to access a sp site.
it works really fine ! My idp is the Active Directory (2003) Ldap
service.
The only thing i would like to improve is to bypass the login page
(simplesaml/module.php/core/loginuserpass.php) and to use directly the
kerberos token. Then, the user will not have to enter a login and
password.
i already do that in another context (apache+php+typo3) but is it
possible to do that with simpleSAMLphp ?
Thanks you for advance !
Solberg Andreas Åkre
On 10. sep.2009, at 09:05, AbuNawfal wrote:
> The only thing i would like to improve is to bypass the login page
> (simplesaml/module.php/core/loginuserpass.php) and to use directly the
> kerberos token. Then, the user will not have to enter a login and
> password.
>
> i already do that in another context (apache+php+typo3) but is it
> possible to do that with simpleSAMLphp ?
I've not seen that anybody has contributed the code for that yet.
It should be pretty straight forward to create a new authentication
source in simplesamlphp.
If you have PHP code for doing kerberos token validation, you are
almost there…
Take a look at the examples in the modules folder:
drwxr-xr-x 11 andreas staff 374 17 jan 2009 authYubiKey
drwxr-xr-x 10 andreas staff 340 2 feb 2009 authfacebook
drwxr-xr-x 8 andreas staff 272 26 jan 2009 authpapi
drwxr-xr-x 9 andreas staff 306 8 mai 19:47 authtwitter
drwxr-xr-x 8 andreas staff 272 16 des 2008 exampleauth
drwxr-xr-x 5 andreas staff 170 26 sep 2008 sqlauth
In particular the exampleauth.
And the documentation here:
https://rnd.feide.no/content/simplesamlphp-modules
Andreas