索赔是在PHP中基于Windows的验证? [英] Claim based authentication from PHP to Windows?
问题描述
我在哪里我所有的网络应用程序连接到LDAP的目录或认证和/或授权的目的AD的公司工作。一般来说,这工作得很好。如今虽然 - 特别是由于最新的introdution到SP2010 - 人们期待的单点登录插件和不想重新登录
i work at a company where all my web-applications connect to the LDAP-Directories or the AD for Authentication and/or Authorisation purposes. Generally this works quite well. Nowadays though - especially due to the latest introdution to SP2010 - people are looking forward to single sign ons and don't wanna re-login.
所以我的问题:
有没有什么办法让PHP要求从Windows身份验证?我的意思是肯定的SharePoint做它与IIS WIF - 也许那里有PHP的方式是真棒:P
Is there any way to make PHP Claim the Authentication from Windows? I mean sure SharePoint does it with WIF on IIS - maybe theres a way PHP is as awesome :P
我的快速谷歌剪掉弹出任何伟大的结果,所以我的希望都达不到太高,但我想询问你们可能是值得一试。在此先感谢! - 新年快乐
My quick google didnt bring up any great results, so my hopes aren't up too high, but i figured asking you guys might be worth a shot. Thanks in advance - happy new year!
推荐答案
有一个在纯PHP来实现这个没有简单的方法。我有完全相同的任务,并做到了,但整个解决方案涉及的原始 HTTP / 1.1,NTLM和SMB(Windows共享)通过TCP / UDP / NetBIOS的 - 在最少。每个单独的那些就够复杂,PHP已经不是有任何的扩展,以帮助他们。
There's no simple way to implement this in pure PHP. I've had the exact same task and done it, but the whole solution involves raw HTTP/1.1, NTLM and SMB (Windows share) over TCP/UDP/NetBIOS - at the least. Each of those alone is complicated enough and PHP hasn't got any extensions to help with them.
有是一个阿帕奇路虽然:
There is an "Apache way" though:
- mod_auth_sspi(如果你在Windows上运行)
- mod_auth_ntlm(我想与Apache&LT这仅适用= 1.3)
- 中的libapache2-authenntlm-perl的(有报道说,这其中导致Web服务器接收大量的请求后挂断)
- mod_auth_kerb所(没有使用这一个,但NTLM由Microsoft实现KerberosV5的取代,它是可用的最先进的解决方案;但是,它需要额外的服务器配置)
这篇关于索赔是在PHP中基于Windows的验证?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!