PHP/Linux Version of Active Directory
Posted: Thu May 12, 2005 3:47 pm
I am in the process of building an Intranet website. The specs call for certain users and groups to have varying levels of access to different parts of the website. My client also has a separate webmail system running on their host. Their goal is to have a seamless login across the two systems: Intranet and webmail, whereby logging into one logs you into the other, and vice-versa.
I have thought about storing the user list and roles in a mySQL DB for use by the Intranet site, but I'm thinking that I would have to drop the username/password details into a cookie and rewrite the webmail index page to grab those details from any cookie. This seems insecure as well as unecessarily convoluted.
If I were using Windows, I probably would setup users and groups in Active Directory, set Basic Authentication in IIS on a directory level for the Intranet, and probably the webmail access would already be based on Active Directory. I am not too familiar with Apache's capabilities, though. Is there a Linux equivalent of Active Directory & ADSI? Or is there a better way to approach the subject of seamless logins across the Intranet and webmail systems?
Also, would the Linux equivalent of IIS Basic Auth prompts work in both IE and non-IE browsers?
Any help would be greatly appreciated.
PS: I'm not sure the name of webmail code package, but it's a PERL based package.
I have thought about storing the user list and roles in a mySQL DB for use by the Intranet site, but I'm thinking that I would have to drop the username/password details into a cookie and rewrite the webmail index page to grab those details from any cookie. This seems insecure as well as unecessarily convoluted.
If I were using Windows, I probably would setup users and groups in Active Directory, set Basic Authentication in IIS on a directory level for the Intranet, and probably the webmail access would already be based on Active Directory. I am not too familiar with Apache's capabilities, though. Is there a Linux equivalent of Active Directory & ADSI? Or is there a better way to approach the subject of seamless logins across the Intranet and webmail systems?
Also, would the Linux equivalent of IIS Basic Auth prompts work in both IE and non-IE browsers?
Any help would be greatly appreciated.
PS: I'm not sure the name of webmail code package, but it's a PERL based package.