LDAP SSO: Additional authentication mechanism in single signon

Its not really setup for this yet. In the next week I will be focusing on LDAP SSO. The general idea is to have a plugin architecture for the various methods.

Keep in mind you do not need to use ldap authentication to implement ldap authorization or other ldap functionality. The idea was to decouple them in drupal 7. Here is a thread on this in drupal 6 #324732: Webserver authentication. Unfortunateley it looks like httpauth isn't being developed.

Are you interested in helping with the ldap kerberos plugin. It would entail coding the a small set of methods in a class.

ok. I'll let you know. I'm going to look at CAS, Shib, etc modules and see how they implement SSO. Its quite tricky with the drupal user module authentication workflow and I want to get the workflow correct. I'm not sure if its correct now in the LDAP SSO NTLM currently. My first thoughts are its like implementing payment processors where you have one base class for each user workflow.

roynilanjan, I submitted a patch to enable mod_auth_kerb support here: http://drupal.org/node/1450932 . I do not have that available in my envrionment, so it is untested, but it is ported from the ldap_sso (version 6) issue queue by someone who supposedly has it working. I do not know all of the permutations that various LDAP authentication web server modules may pass user credentials in, but between the mod_auth_sspi implementation and mod_auth_kerb implementation, it will work with both 'ldap_username' and 'ldap_username@realm.com'.

I committed hotspoons patch. I want to get a beta out before I start tackling some bigger issues. I'll get abck to this, but here are my initial notesL

It depends on the sso implementation, but here is what the classes need so far.

properties:
$server (storage place for $_SERVER variable to help with simpletest mock servers)
$Implementation
$authenticationConf (LdapAuthenticationConf object)

methods:
getSsoUserName()
logout($user)

Attached is my work so far that I haven't committed.

John, I'll need to learn how simpletest works as I haven't encountered a need to implement it in the small published modules or bespoke project-specific modules I've developed. Since active development and the discovery of SSO issues seems to be much more active here, I'll need to back-port these fixes to my D6 version eventually.

Features can't be major

This ticket tracks supporting mod_auth_kerb, this is available, closing.

Hi,

I want to implement LDAP with SSO module using drupal 8. I have created LDAP Server. Created set of users. Through drupal 8 -> Configuration -> Server, Created new entry for my LDAP server. I have tested connection through Test LDAP functionality. It is working fine. If i search user by the help of "Test LDAP Server Configuration", it listing out the user which i created in LDAP server.

My Question is : After enable the "LDAP SSO" module, when i try to login using following url :

http://mydomain.com/user/login/sso

I am getting the following error:

"You were not authenticated by the server. You may log in with your credentials below. "

I need support to configure the "LDAP SSO".

Thanks in Advance!

@kumanan.c This is a unrelated and closed feature request. This is not the appropriate place to ask. Please open a new support request and follow the prerequiste steps in the issue creation screen.