documentation:1.0:authproxy

Proxy

Authentication Users Password

LL::NG is able to transfer (trough SOAP) authentication credentials to another LL::NG portal, like a proxy.

The difference with remote authentication is that the client will never be redirect to the main LL::NG portal. This configuration is usable if you want to expose your internal SSO portal to another network (DMZ).

In Manager, go in General Parameters > Authentication modules and choose Proxy for authentication and users.

Then, go in Proxy parameters:

  • Portal URL: URL of internal portal
  • Cookie name (optional): name of the cookie of internal portal, if different from external portal
  • SOAP sessions end point (optional): SOAP end point, if not based on internal portal URL with index.pl/sessions suffix

The portal must be configured to accept SOAP authentication requests. See SOAP session backend documentation.