mod_auth_tkt 1.3
11.04.02: I want to collect some information about how many sites are running this module to publish in this site,
so if you're using this module, please send me an email telling me what is your company (or site), why you're using this module, and if you have any suggestions.
First of all, let me say that I didn't develop this module from scratch;
I got the original mod_tkt_auth at modules.apache.org
and changed it to satisfy my needs.
Second, it's my first module, and I had only other modules as documentation
(besides what is in the apache modules site), so maybe things could be more
elegant.
Finally, what were my needs:
- Authenticate users with any method, even not pre-defined (you can use
text files, databases, PAM, radius, or whatever you may dream of).
- Timeout for each session.
- Logoff option
- Most important of all, this authentication must be done by the web server,
not by any kind of script; every request should be checked.
All features presented in the original Ticket Authentication module were
kept. In adition, you have:
- Some fixes from the original module.
There were several little things that were not portable or just didn't work
fine; it was also a good time for learning more about apache API and such.
- Expiration of authentication due to inactivity!
- Possibility of closing the session
- IFX Networks Brazil: this modules is
responsible for controling the access to the company's intranet. Also, with a
sophisticated algorithm and a PostgreSQL database, it authenticates users and controls
access to privileged files (module extension also developed by me). The problem faced at
IFX was the initial motivation for this development.
- VMS KeyTrade: They switched from
IIS to Apache, and are using this module for access to the site. They were
using an IIS filter from www.flicks.com
called AuthentiX, and this module had about the same feature set with some extra nice
things.
- Renault: this module is
used into several intranet web sites they use for their work: one generic site for the
company, a web site for each vehicule, and several other web servers (webmail for example).
They have aproximately 3000 (authenticated) users and something
like 300 big web applications (developped in PHP) for their work.
Without single sign on, it could be very annoying to always have to reauthenticate.
- www.mamboenco.com is using
mod_auth_tkt as part of a membership system.
- www.telenet.be is using mod_auth_tkt
to protect some parts of the site so as to allow only telenet customers.
You can get the latest version here! (mod_auth_tkt
1.3)
- Does not work when you add the ServerName directive inside a VirtualHost block.
Nothing at the moment! As soon as possible I will write down some thing.
There's some documentation from the original mod_auth_tkt that is included
in the tarball.
You can reach me at nelio@ime.usp.br
.
If you have any sugestions or problems, don't hesitate writing me! I can't
promise any sort of turnaround, but I'll definitely take any suggestions
and such into account.
Last modified: Mon Feb 18 15:14:11 BRT 2002
Back to Software
Back to Home