Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

mod_auth_mellon is an authentication and authorisation module for the Apache HTTP server. More specifically, it is used to authenticate the user against a SAML2 IdP, and grant access to directories served through the Apache HTTP server based on attributes received from the IdP.

  • Ownership: UNINETT

  • Licence: GPL 2

Table of Contents

Features

mod_auth_mellon turns an Apache HTTP web server into a SAML2 service provider. The required SAML2 SP metadata can be either configured statically by the system administrator or generated automatically by mod_auth_mellon.

The AARC requirements supported by the tools are:

  • Browser & non-browser based federated access: Web-based resources

  • Federation solutions based on open and standards-based technologies: SAML2-compliant

Supported standards

  • SAML2 
  • SAML2 ECP

User Interfaces and APIs

mod_auth_mellon configuration options can be set in Apache HTTP server’s global and virtual host configuration files.

Support for Virtual Organisations

Not relevant.

Dependencies on other technologies

  • Apache HTTP server

  • OpenSSL

  • lasso

Operational overview

Being an Apache HTTP server module, mod_auth_mellon is deployed on the service provider’s web server.

Expected level of support

Not specified. Project supported by UNINETT and the open-source user community.