GÉANT TI Incubator OIDFED demo page

iAMRES OIDFED RP!

This is the public landing page of mock-up web application that requires federated login to access its protected areas.

Configuration Overview

This webpage is served by Apache2 and is accessible to everyone. The /protected page (see button below) needs apache authentication, that in turn is served by mod_authmencookie. Mod_autmemcookie in this instance is implemented with OFFA in the backend.

The configuration layout for an Apache2 web server:

<Location />
    Auth_memCookie_CookieName offamemcache
    Auth_memCookie_Memcached_Configuration --SERVER=127.0.0.1:11211

    # to redirect unauthorized user to the login page served by OFFA
    ErrorDocument 401 "/login?next=/protected"

    Auth_memCookie_Authoritative on
    AuthType Cookie
    AuthName "OIDFED-AuthMemCookie"
    Require all granted
</Location>

#This is the protected location of the application
<Location "/protected">
    require valid-user
</Location>
ProxyPass /login http://localhost:15661/login
ProxyPassReverse /login http://localhost:15661/login

Trigger login