You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2017/03/14 09:52:28 UTC

[Bug 60862] New: Authentication through APACHE reverse proxy

https://bz.apache.org/bugzilla/show_bug.cgi?id=60862

            Bug ID: 60862
           Summary: Authentication through APACHE reverse proxy
           Product: Apache httpd-2
           Version: 2.2.15
          Hardware: Sun
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: mod_proxy
          Assignee: bugs@httpd.apache.org
          Reporter: simon.grimal@soprasteria.com
  Target Milestone: ---

Created attachment 34822
  --> https://bz.apache.org/bugzilla/attachment.cgi?id=34822&action=edit
httpd configuration file and mod_proxy_dwa.c

NEED:
Implement a module for APACHE which perform authentication in place of the end
user with his remote_uid (provided by Siteminder) when accessing the
application.


IMPLEMENTED SOLUTION :
In the attached file "mod_proxy_dwa.c", we simulate the Siteminder remote uid
by setting in the code an existing login/password : LQE/123456789

This authentication is made in a module for APACHE httpd.x86_64
2.2.15-56.el6_8.3

We try to create our own module based on mod_proxy module’s sources and add our
modification in it module. Then use our own module in place of mod_proxy.
We set our login/password in the request of the URL
"https://slnxvibesdoors02.colo.fr.sopra:8443/dwa/j_acegi_security_check"



COMPILATION : 
apxs -n proxy_dwa -cia mod_proxy_dwa.c


APACHE start :
httpd -k start


PROBLEM :
The login/password set is not taken in account.
We did not succeed to replace mod_proxy by our module, some other modules
depend on mod_proxy, and our module do not match, but we don’t know why.


I attach to the incident the source code of our module "mod_proxy_dwa.c" and
the APACHE configuration file "httpd.conf".

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org

[Bug 60862] Authentication through APACHE reverse proxy

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=60862

Julie <ju...@hotmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |julie.farkouh@hotmail.com

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org

[Bug 60862] Authentication through APACHE reverse proxy

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=60862

Luca Toscano <to...@gmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Resolution|---                         |INVALID
             Status|NEW                         |RESOLVED

--- Comment #1 from Luca Toscano <to...@gmail.com> ---
Hi,

please follow up on the dev@ mailing list, this doesn't seem a bug but a code
review request.

Thanks!

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org