Kerberos authentication for Authentic2
Go to file
Serghei Mihai 6fe991649a misc: fix authenticator wrong path (#31597) 2019-03-20 15:22:55 +01:00
debian Add 'debian/' from commit '21f912b631159d5e7425967a3cf681f98893fe66' 2015-04-02 19:18:54 +02:00
src/authentic2_auth_kerberos misc: fix authenticator wrong path (#31597) 2019-03-20 15:22:55 +01:00
tests backends: cast username to unicode (fixes #31206) 2019-03-07 23:09:37 +01:00
COPYING first commit 2014-09-02 16:25:31 +02:00
Jenkinsfile add Jenkinsfile, support dj111, prepare for python3, improve tox.ini (fixes #30321) 2019-02-06 12:48:51 +01:00
MANIFEST.in release 1.1.0 2016-03-07 11:01:08 +01:00
README release 1.1.0 2016-03-07 11:01:08 +01:00
getlasso.sh tests: use unique database name (#13083) 2016-09-06 15:54:54 +02:00
jenkins.sh chmod +x jenkins.sh 2018-02-15 14:34:49 +01:00
merge-junit-results.py add Jenkinsfile, support dj111, prepare for python3, improve tox.ini (fixes #30321) 2019-02-06 12:48:51 +01:00
pylint.sh add Jenkinsfile, support dj111, prepare for python3, improve tox.ini (fixes #30321) 2019-02-06 12:48:51 +01:00
setup.py add Jenkinsfile, support dj111, prepare for python3, improve tox.ini (fixes #30321) 2019-02-06 12:48:51 +01:00
tox.ini tox: limit django-jsonfield version to keep django 1.8 compatibility (#31482) 2019-03-17 18:17:29 +01:00

README

Authentic2 Auth Kerberos
==========================

It provides basic implementation of the HTTP Negotiate authentication mechanism
and autologin support using Javascript and a cookie.

The django-kerberos_ project is used as a basis for this plugin. 

Install
-------

You just have to install the package in your virtualenv and relaunch, it will
be automatically loaded by authentic2.

You must define the KRB5_KTNAME environment to the path of a keytab file
containing the key for your service principal. See django-kerberos_
documentation for details.

Settings
--------

- A2_AUTH_KERBEROS_ENABLED: enable the authentication module, default is True.
- A2_AUTH_KERBEROS_CREATE_USER: whether to create users for Kerberos
	principals, default is True.
- A2_AUTH_KERBEROS_REALM: default reaml to attribute to user, default is None.
	If not None, the Kerberos realm is replaced by this one. It's incompatible
	with support for multiple realms.
- LDAP_AUTH_SETTINGS: same settings than for other usages in Authentic2, the Kerberos backend
  introduce a new key 'principal_filter' which is a str.format() template receiving two keyword
  arguments, username (the local part of the principal) and realm.

.. _django-kerberos: https://pypi.python.org/pypi/django-kerberos

Changelog
=========

1.1.0
-----

- use a2_just_logged_out to authorize automatic login and hide login tab
- add LDAP backend

1.0.0
-----

 - initial release