[Mailman-Users] x.509 cert authentication for web interface?
Jon Carnes
jonc at nc.rr.com
Fri Jan 30 21:25:24 CET 2004
On Fri, 2004-01-30 at 14:03, Noah Meyerhans wrote:
> Hi all. I'm wondering if anybody has devised a way to authenticate to
> the admin/moderator interfaces in Mailman using browser certificates.
> We try to use them to authenticate to web services wherever possible,
> and have a fairly widely deployed PKI at my site.
>
> It seems like this should be possible, but I really don't know python
> and am not very familiar with Mailman's code. We use Apache and
> mod_ssl, which means that we can make a bunch of environment variables
> associated with the certificates available to Mailman. In particular,
> we can find out the email address of the user. It seems like we should
> be able to look for that email address in the list of admin or moderator
> addresses and consider the user to be authenticated if it's there. The
> web server is already doing the necessary work to verify that the
> certificate is valid, so everything presented to Mailman should be
> trustworthy.
>
> Any help would be much appreciated.
>
> noah
Dude,
Just move the script alias inside the ssl part of your httpd.conf.
More information about the Mailman-Users
mailing list