[foaf-protocols] Update to TAAC
Ian Campbell Jacobi
pipian at MIT.EDU
Fri Jan 30 17:01:55 CET 2009
I recently (in the past month) upgraded my test server to Apache 2, and had
encountered some issues with the existing code for TAAC, as well as minor
configuration issues when dealing with mod_ssl. These have now been fixed, and
the code now should be able to have a public checkout[1] with the username and
password 'dig'.
A lingering issue that I am currently wrestling with, however, is mod_ssl's
ignorance of VirtualHost-based SSLVerifyClient setting. It is currently set in
the global space, which leads to issues on other sites where I do not desire it,
and I additionally believe that TAAC may not work well with SSL renegotiation
(which would otherwise resolve the issue), although I have not tested this
rigorously.
Ian
[1] <https://svn.csail.mit.edu/dig/TAMI/2008/taac/proxy> and
<https://svn.csail.mit.edu/dig/TAMI/2007/cwmrete/tmswap> per the instructions
at [2]
[2]
<http://www.pipian.com/blog/2008/12/11/authentication-and-authorization-on-the-open-social-web-with-taac/>
More information about the foaf-protocols
mailing list