We and some of our customers use Atlassian’s Crowd as a SSO solution. I was surprised to find that Atlassian does not provide code to enable Apache to use cookie-based authentication. Their only Apache solution is based around HTTP Basic Authentication. I found an open JIRA issue about this and from there found some code examples laying around. None of them were an all-in-one solution, so I combined the various bits into a single solution. Hopefully Atlassian will provide an official solution in the near future, or at least patch their official Perl libraries to include the calls utilized by the code that does implement a solution.
Atlassian Crowd, Apache, and cookie-based authentication
2 Comments
Leave a Reply
by Phil
11 Jan 2012 at 02:22
Hi Jim,
I’m failing to make this work as SSO.
I can get it to set, and use cookies for itself, but all my other apps (all Atlassian ones admittedly…) generate a different token to the .cgi…
Points of interest:
– I added -domain to the CGI::Cookie call, so that it has the some domain setting as everything else.. but still to no avail…
Did you take this code any further?
– Phil
by Jim Browne
26 May 2012 at 18:23
Phil, your comment was trapped in the spam filter; apologies for the long queue.
I haven’t looked at the code in a while. One thing to check when making SSO work across Crowd clients is to ensure the extra data sent for AuthenticatPrinciple matches.
OTTOMH I believe Atlassian has released a new Apache module for Crowd, but I haven’t had the time nor inclination to look into it recently.