mod_auth_mellon is an authentication and authorisation module for the Apache HTTP server. More specifically, it is used to authenticate the user against a SAML2 IdP, and grant access to directories served through the Apache HTTP server based on attributes received from the IdP.
Ownership: UNINETT
Licence: GPL 2
Table of Contents
Features
mod_auth_mellon turns an Apache HTTP web server into a SAML2 service provider. The required SAML2 SP metadata can be either configured statically by the system administrator or generated automatically by mod_auth_mellon.
The AARC requirements supported by the tools are:
Browser & non-browser based federated access: Web-based resources
Federation solutions based on open and standards-based technologies: SAML2-compliant
Supported standards
- SAML2
- SAML2 ECP
User Interfaces and APIs
mod_auth_mellon configuration options can be set in Apache HTTP server’s global and virtual host configuration files.
Support for Virtual Organisations
Not relevant.
Dependencies on other technologies
Apache HTTP server
OpenSSL
lasso
Operational overview
Being an Apache HTTP server module, mod_auth_mellon is deployed on the service provider’s web server.
Expected level of support
Not specified. Project supported by UNINETT and the open-source user community.