The easiest thing would be to simply LDAP authenticate against Active Directory but the company doesn't even have roles set up. When authenticating against AD, it requires two binds, the first being a user and password that simply can bind to AD and the next being the actual user name and password. The company is happy with doing this single bind using the user name and password and I went ahead and built that using Net::LDAP. The idea being that if they have put in a valid user name and password that they are then authorized to use the app.
What they're after is the ability to authenticate once and then you can just redirect to whatever app you want to use.
I know using DBIC that I could just create one app and have it authenticate and we could just store the session id in a separate database and from there go on to whatever app they want to use. Question is jumping into a new catalyst app after authenticating from another one and I'm not so sure that just having that session id alone is enough.
The more I think about it the more that this seems to make sense.....
- Fire up the authentication app.
- Take the user name and password and upon successful login store the user name, password and session id in the authentication db
- Redirect to the requested app (sending the user name and password along with it somehow) and use the authentication db as the store.
Given that we're storing a user name, password and session id already in a table after initial authentication, could we just use that session id to bring someone entry into another catalyst app?
Anyone familiar enough with process to throw in some advice? I really appreciate it.
In reply to Authenticating for multiple Catalyst apps by sherab
| For: | Use: | ||
| & | & | ||
| < | < | ||
| > | > | ||
| [ | [ | ||
| ] | ] |