Tags:
security1Add my vote for this tag create new tag
, view all tags
+++ An Apache Authorization handler to protect attachments and enable WebDAV

I am finishing (with FrancoBagnoli) an Apache ModPerl-based handler to handle authorization to dirs and scripts.

  • there is a Plugin that:
    • saves the TWiki authorization settings (ALLOW/DENY CHANGE/RENAME/VIEW WEB/TOPIC) of pages and webs and the groups definitions in a Mysql database to speed up authentication (see next item)
  • the Apache authorization handler:
    • uses the stored definitions for authentication at Apache level, this way
      • the authorization is handled by Apache without reading a lot of files
      • the authorization protects also the attachments
      • you can use WebDAV to edit attachments (it works like a breeze!)
  • another Apache handler uses Apache::SessionManager to handle sessions both with cookies and with URI rewriting

Stay tuned ...

-- AndreaSterbini - 27 Aug 2003

Edit | Attach | Watch | Print version | History: r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r2 - 2008-08-25 - TWikiJanitor
 
  • Learn about TWiki  
  • Download TWiki
This site is powered by the TWiki collaboration platform Powered by Perl Hosted by OICcam.com Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.
Copyright © 1999-2017 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.