[horde] alternate_login / redirect_on_logut in horde using
IMAP auth not (application->imp->imap)
cpickert at t3inc.us
cpickert at t3inc.us
Sat May 15 18:21:55 PDT 2004
Smoked a cigarette and was thinking...
The get_login.php defines itself as a auth_handler and ''challenges''
the horde
auth. When horde is set to be 'application'->'imp' auth and IMP has
'hordeauth'->'full' w/ my 'alternate_login' & 'redirect_on_logout' both
defined, the 'alternate_login' causes whenever you run IMP to show the
'alternate_page', even though the auth has been done, and the
'redirect_on_logout' never destroys the horde session.
Can I make get_login.php be an IMP tied handler? Thats the way the
custom_login.php works, in the sense it's POSTing against redirect.php, and
with 'application'->'imp' set in horde, the horde login.php knows how to
determine to POST to redirect.php. It's just that get_login ties only
to horde,
not imp..
I know I'm sorta kluding the login/logout interface, just wondering whats the
best way to accomplish my goals. This is also only the preliminary step
of auth
becauase I'd like to make a auth-proxy mechanism to display multi-login
screens, allowing people to switch users on the ''fly''(''logout'' in
horde,back to this proxy-login system that runs on the same sql DB that my
IMAP/SMTP server do)
I'm as confused as you are! :)
-- Chris Pickert
Quoting cpickert at t3inc.us:
> Hello guys,
>
> I'm using the get_login.php and a super-tiny HTML login that gives
> GET vars
> (hacked to add strtolower() and $vhost = preg_replace('|^www\.|i', '',
> strtolower(getenv('HTTP_HOST')) in order to get the @domain.tld to
> courier-imap) w/ the newest CVS->HEAD and 'full' in my hordeauth inside IMPs
> servers.php.
>
> I've looked into the hooks and realize they do very similar things
> to above,
> yet do it from auth(imap)->horde(pref) and vice versa(as well as the
> String::lower to aid in case ubiquity), not actually changing user input in
> their login to add their current virtual host. There's a ''security
> breach'' by
> handing auth data via GET (although it's SSL) the custom_login.php that POSTS
> to imp/redirect.php doesn't allow me to get the @domain.tld in
> without hacking
> redirect.php and breaking CVS sync.
>
> So thats the background, what I'm wondering is that with IMP as the auth
> handler via 'application', you can define ['user']['alternate_login'] and
> ['user']['redirect_on_logout'] to URLs to my custom login page, which works
> great with IMP as the authhandler. I've tried defining them in the
> conf.php of
> horde but it doesn't do the trick. Also, I have to set the vars to false in
> IMPs conf.php or the hordeauth->full doesn't work right...
>
> Trying to hunt down a way.. Please post up your suggestions and reflections..
> It's confusing, I know but, it makes a helluva lotta sense for
> massive virtual
> hosts using courier-imap .. Maybe there's better ways, and I've tried
> others in
> the past. Just doing my best, help where you can!
>
> Thanks to all!
>
> -- Chris Pickert
> --
> Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org
More information about the horde
mailing list