Loading...
 
Skip to main content

History: External Authentication

View published page Collapse Into Edit Sessions

Source of version: 17

Copy to clipboard
            !Login Authentication Methods
{maketoc}

!!Overview of Login Methods
Tiki allows you to use several different login ((Authentication)) methods.  For standalaone sites (not connected to a central authentication server), you can use "Just Tiki" or "Web Server".  For sites that are part of
a larger environment Tiki offers Pear::Auth, CAS, and Shibboleth authentication. 

!!Just Tiki
The __Just Tiki__ authentication method uses the usernames and passwords stored in the tiki database for authentication.  This is best used for sites that are not part of a larger intranet.

!! OpenId and Tiki
OpenId authentication has been introduced in ((Tikiwiki 1.10))
OpenID is an open and decentralized identity system, designed "not to crumble if one company turns evil or goes out of business".  
More information on http://openid.net

!!Web Server
A common way of protecting webpages is through Basic HTTP authentication. The web server sends a "401 Authentication Required" header when a protected page is requested. The browser would then prompt the user for a username and password. Access is allowed if the username password pair are valid; else, the web server sends a HTTP 401 error, meaning "access denied." HTTP authentication is usually used by creating a .htaccess file. (Only in Apache?)

Tikiwiki is able to detect when a visitor to the site is currently logged in using Basic HTTP Authentication. If the username of the user matches a username within Tikiwiki's database, Tikiwiki will automatically log the user in and, of course, grant all the assigned permissions.

!!Tiki and Pear::Auth

TikiWiki uses the Pear:Auth library which permits many types of external authentication.
http://pear.php.net/package/Auth

!!!LDAP via Pear::Auth
((LDAP authentication))

!!!IMAP via Pear::Auth
((IMAP Authentication))

!!!POP3 via Pear::Auth
((POP3 Authentication))

!!!Vpopmail via Pear::Auth
((Vpopmail Authentication))

!!Tiki and Pam
((PAM authentication))

!!CAS
((CAS Authentication))

!!Shibboleth
((Shibboleth Authentication))

-=From here=-
{toc}

History

Information Version
Marc Laporte 54
Marc Laporte 53
Marc Laporte Cleaning up 52
Marc Laporte 51
Marc Laporte 50
Marc Laporte 49
Marc Laporte 48
Yves Kipondo 47
E.W. Peter Jalajas 46
E.W. Peter Jalajas 45
E.W. Peter Jalajas petjal added Yubi 44
E.W. Peter Jalajas petjal add SMS, Security Question 43
E.W. Peter Jalajas petjal added 2-factor 42
E.W. Peter Jalajas petjal added PKI, WebPG 41
E.W. Peter Jalajas petjal added future, browserid, cacert client certs 40
Marc Laporte 39
Marc Laporte 37
Marc Laporte 36
Marc Laporte 35
Marc Laporte 34
Marc Laporte 33
Marc Laporte 32
Marc Laporte 28
lindon changed wanted pages into regular text 27
mizraith 26
mizraith 25
mizraith 24
mizraith 23
mizraith 22
mizraith 21
lindon removed double colons which was causing the left column to disappear 20
Marc Laporte 19
Marc Laporte 18
Xavier de Pedro 17
Xavier de Pedro 16
Xavier de Pedro 15
Marc Laporte were missing pop3 and Vpopmail 14
Marc Laporte 13
Marc Laporte refactoring 12
Marc Laporte refactoring 11
Marc Laporte 10
Marc Laporte moved to LDAP page 9
dthacker Update of PearAuth form and explanations of table 8
dthacker added Shibboleth 7
dthacker moved Pear::Auth 6
dthacker re-arrange items 5
dthacker Added CAS 4
dthacker 3
dthacker save work in progress 2
dthacker page created 1