The Perl Toolchain Summit needs more sponsors. If your company depends on Perl, please support this very important event.

NAME

Apache::AuthenWE - mod_perl WE_Framework authentication module

SYNOPSIS

    <Directory /foo/bar>
    AuthName "WE_Framework Authentication"
    AuthType Basic

    # This seems to be necessary because of the Authz Handler
    AuthGroupFile /dev/null

    # Put the paths to the WE_Framework and web.editor project classes here
    <Perl>
        push @INC, "/shared/httpd/project/WE_Framework/lib",
                   "/shared/httpd/project/lib";
    </Perl>

    # define WE_Framework class and root directory
    PerlSetVar WE_RootClass WE_Sample::Root
    PerlSetVar WE_RootDir /home/e/eserte/public_html/sample/wwwroot/cgi-bin/we_data
    # Support for the logout user hack (not working yet)
    #PerlSetVar WE_Authen_LogoutUser logoutuser
    #PerlSetVar WE_Authen_IgnoreUser invalid

    PerlAuthenHandler Apache::AuthenWE
    PerlAuthzHandler Apache::AuthenWE

    # Who is allowed to see the pages?
    require user admin
    #require user ich admin chiefeditor
    #require group chiefeditor author
    #require valid-user

    </Directory>

These directives can also be used in the <Location>, <LocationMatch> or <Files> directives or in an .htaccess file, assuming AllowOverride is not set to none.

DESCRIPTION

This module implements Apache authentification through the use of WE_Framework.

THE LOGOUT USER HACK

By defining the WE_Authen_LogoutUser mod_perl variable support for the logout user hack is turned on. The user specified in this variable is always authentified, regardless of the password value. For this user, the backend application is responsible to show some kind of logout screen.

The WE_Authen_IgnoreUser variable holds the name of a user which is never authentified, but an authentification attempt is not logged. The existance of such a user name may be necessary for the web.editor system.

AUTHOR

Slaven Rezic - eserte@users.sourceforge.net

SEE ALSO

Apache.