mod_auth_mellon is an authentication and authorisation module for the Apache HTTP server. More specifically, it is used to authenticate the user against a SAML2 IdP, and grant access to directories served through the Apache HTTP server based on attributes received from the IdP.

• Ownership: UNINETT

• Licence: GPL 2

mod_auth_mellon turns an Apache HTTP web server into a SAML2 service provider. The required SAML2 SP metadata can be either configured statically by the system administrator or generated automatically by mod_auth_mellon.

The AARC requirements supported by the tools are:

• Browser & non-browser based federated access: Web-based resources

• Federation solutions based on open and standards-based technologies: SAML2-compliant

• SAML2 
• SAML2 ECP

mod_auth_mellon configuration options can be set in Apache HTTP server’s global and virtual host configuration files.

Not relevant.

• Apache HTTP server

• OpenSSL

• lasso

Being an Apache HTTP server module, mod_auth_mellon is deployed on the service provider’s web server.

Not specified. Project supported by UNINETT and the open-source user community.