Re: Single Value Authentication Module

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: Re: Single Value Authentication Module
From: Terry Carmen <terry@xxxxxxxxxxxxxx>
Date: Mon, 12 Sep 2011 11:58:50 -0400
In-reply-to: <4E6E2822.3050007@psu.edu>
Reply-to: users@xxxxxxxxxxxxxxxx
User-agent: Internet Messaging Program (IMP) H3 (4.3.9)

Quoting "J.Lance Wilkinson" <jlw12@xxxxxxx>:

> I'm looking for a VERY SIMPLE single value authentication module (like BASIC
> Authentication, but only a USER ID, no prompt for PASSWORD) for Apache 2.2.x.
> User IDs that will be used are going to be long numeric transaction ids
> provided by an external e-commerce site.

You'll probably find it much simpler to use the standard basic auth mechanism, use your transaction id for the login and pass in a dummy password.

You could also play with the Require directive.

Although I've never tried it, and it seems like a really bad idea, it will supposedly accept a Boolean _expression_, so you could try "Require true" or something similar.

In any case, if your transaction IDs can be predicted or brute-forced, this all sounds like a really bad idea.

Terry

Follow-Ups:
- Re: Single Value Authentication Module
  - From: J.Lance Wilkinson

References:
- Single Value Authentication Module
  - From: J.Lance Wilkinson

Prev by Date: Single Value Authentication Module
Next by Date: Re: Single Value Authentication Module
Previous by thread: Single Value Authentication Module
Next by thread: Re: Single Value Authentication Module
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]