[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#304728: ITP: webauth -- Cookie-based web authentication using Kerberos

Package: wnpp
Severity: wishlist
Owner: Russ Allbery <rra@stanford.edu>

* Package name    : webauth
  Version         : 3.2.4
  Upstream Author : WebAuth Team <webauth-info@lists.stanford.edu>
* URL             : http://webauthv3.stanford.edu/
* License         : MIT/X
  Description     : cookie-based web authentication using Kerberos

WebAuth is a cookie-based web authentication system built on top of
Kerberos.  It relies on a central authentication server that handles all
user authentication for a domain and creates user authentication
credentials for any web server that needs strong authentication.

This package differs from mod_auth_kerb in that it will work with any
browser, not just those supporting SPNEGO, without sending the user's
password to each web site to which they wish to authenticate.  It
supports a form of single sign-on in that a user only has to autheticate
once to the central authentication server and then can visit any web
site within that authentication domain without needing to reauthenticate.

This package comes in two sections, an Apache module and supporting library
for all of the servers that want to authenticate users and an Apache module
and supporting scripts for the central authentication server.  It also has
Perl bindings for its library, which are used by the authentication server
user front-end.  As a result, the current plan is to break it out into nine

  libapache2-webauth	Apache module for client web servers
  libapache2-webkdc	Apache module for central authentication server
  libwebauth3-perl	Perl bindings for the WebAuth libraries
  libwebauth1		Supporting WebAuth shared library
  libwebauth1-dev	Development files for WebAuth shared library
  libwebkdc-perl	Perl modules for central authentication server
  webauth-tests		Test suite for client web server
  webauth-utils		Command-line utils for WebAuth key management
  webauth-weblogin	User front-end to central authentication server

Note that libapache2-webkdc depends on the S/Ident libraries for full
functionality.  An ITP for S/Ident will be filed in a moment.

-- System Information:
Debian Release: 3.1
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.4.26
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C)

Reply to: