O
O
Oleg Shaposhnikov2021-03-02 17:59:32
PHP
Oleg Shaposhnikov, 2021-03-02 17:59:32

How to configure Kerberos authorization in SOAP API in php?

There is a SOAP api written in php. The system is on RHEL, the machine is entered into the domain: in the browser, ntlm authorization works for users - everything is ok with this.

But now it is necessary to make that when requesting the API, domain authorization occurred: like a kerberos ticket comes to us, on our side we somehow have to understand and verify this request, and then we already do all the necessary processing logic.

And at this verification stage, a problem arose - I just don’t understand how it should work (
Well, in general terms, there is an understanding: in theory, I should contact the domain controller with this ticket, he should give me an answer and I’m happy in the case success, I do everything else.But I didn’t find examples of this in the apache + php bundle at all, how to turn this whole thing around.

Answer the question

In order to leave comments, you need to log in

2 answer(s)
V
Vladimir Korotenko, 2021-03-02
@firedragon

I would go the easy way. I would steal the idea from nginx. The second option is to put the application in a trusted circuit and use some kind of ldap helper inside to query the directory.

A
Anton Shamanov, 2021-03-03
@SilenceOfWinter

via ldap php extension

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question