LDAP authentication (3 steps)

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

Post Reply
murlopaz
Forum Commoner
Posts: 60
Joined: Wed Oct 11, 2006 5:02 pm
Location: Baltimore, MD, USA

LDAP authentication (3 steps)

Post by murlopaz »

Hi everybody,
I am trying to implement a security feature for a website.
The problem is that the user names an passwords are located on a LDAP server.
I am thinking of using a pear library to perform the authentication+authorization.
I have an idea on access control but i am not sure if i am thinking right.
After authentication+authorization, i am thikning of starting a session for the user.
Afterwards i am thinking of checking htaccess for important directories on the server and see if the group that the user belongs to is authorized to access that directory.
Any help on this matter is much appreciated!
User avatar
feyd
Neighborhood Spidermoddy
Posts: 31559
Joined: Mon Mar 29, 2004 3:24 pm
Location: Bothell, Washington, USA

Post by feyd »

What's the question(s)?
murlopaz
Forum Commoner
Posts: 60
Joined: Wed Oct 11, 2006 5:02 pm
Location: Baltimore, MD, USA

Post by murlopaz »

The question: Would this be considered a good implementation of my problem?
I've also heard about PEAR::Auth...
any suggestions are welcome
Post Reply