This script allows you to setup an authority that will only authorize certain users depending on their GID while allowing them to use their regular password, securely.
Usage for users [email protected] and I use tst.armagetron.co.uk/staff as proxy:
Place stafflogin.php at where you want your authority to be (without the /armaauth/0.1/ part) and throw this in your .htaccess (replacing paths):
Code: Select all
RewriteRule ^(.+)/armaauth/0\.1/? /absolute/sytem/path/to/stafflogin.php?foreignauthority=$1 [QSA,L] RewriteRule ^(.+)/armaauth/0\.1/?\??(.*) /absolute/sytem/path/to/stafflogin.php?foreignauthority=$1&$2 [QSA,L]
This is GPL-licensed and shares authors with armagetronad (It has some snipplets from the reference authentication authority implementation).