Apache::Wyrd::Services::LoginServer - Login service For Auth object
<Location /logins/login.html> SetHandler perl-script PerlHandler Apache::Wyrd::Services::LoginServer PerlSetVar TicketDBFile /var/run/www/ticketfile.db PerlSetVar Debug 0 </Location>
The Login Server provides SSL encryption for a login to a Apache::Wyrd::Auth module when it must run on an insecure port. This behavior is described in the documentation for
It uses the TicketPad module to keep a cache of 100 recent tickets. If presented with a POST request with a 'key' parameter, it stores the key and returns OK. If presented with an authorization set (on_success, [on_fail], user, password, ticket), it returns the data to the server via a redirected GET request with the challenge parameter set to the encrypted data.
The TicketPad has a limited capacity, and old tickets are removed as new ones are added. If the authorization request is so stale it asks for a ticket that has been discarded, the LoginServer returns the status HTTP_SERVICE_UNAVAILABLE.
All other accesses fail with an AUTH_REQUIRED
(format: (returns) name (arguments after self))
The handler handles all functions.
Location of the DB file holding the tickets. It should be writable by the Apache process. It should probably be unreadable by anyone else.
Set to true to allow debugging, which will go to the error log.
Size of the ticketpad is not configurable.
Barry King <email@example.com>
Shared-memory encryption key and cypher.
Copyright 2002-2007 Wyrdwright, Inc. and licensed under the GNU GPL.
See LICENSE under the documentation for