Can Apache be integrated with 3rd party cookie session authentication/authorization?

Question

I'd like to configure Apache to serve files directly from the file system but authenticate/authorize users. How can Apache be configured so it calls my auth middleware?

Basically:

1) Redirect to login if user is not authenticated. Check session cookie against database otherwise.

2) Allow access to certain files based on who the user is (authorization).

Any more details? What authentication does your current system use? — Smudge, Jun 22 '11 at 19:01

score 5 · Answer 1 · answered Jun 22 '11 at 19:04

5

Try a Google search for "apache single signon" or "apache sso". In particular, look at:

All of these implement almost exactly the mechanism you've described.

answered Jun 22 '11 at 19:04

larsks

41,276
13
117
170

Can Apache be integrated with 3rd party cookie session authentication/authorization?

1 Answers1