I am writing a simple admin tool in PHP for my own personal use that I would like to host on the free Azure Websites tier. I need to secure the site through a simple authentication scheme such as .htpasswd under *NIX servers.
Are there any recommended approaches to do this when running the site in PHP?
I have looked at the options in web.config, however they all appear to require a Windows user-account against which to authenticate. I have taken a look at Windows Azure Basic Authentication but I'm not too sure how I could run appcmd.exe against this website.
I have checked out the Windows Azure Active Directory integration options, but I can't see anything I can call from PHP (is there a RESTful API I can call maybe?).
I don't particularly want to write my own authentication handler and don't particularly want to run a micro-instance Linux VM....
If you are looking for simple authentication you can hard code the username and password combination in the login script itself and the info will be protected. If that does not satisfy your requirement you can use free version of mysql and store credentials their before using it. these two options are the simplest and free you can use. Also Active Directory or UAC based auth are overkill for your small project.
There is a Sample project that shows how to do Single Sign-on with Windows Azure Active Directory using PHP.
I haven't tested this code out in Windows Azure Web Sites as of yet, but it is available as a sample if you'd like to get an idea as to how you may be able to implement your own Auth Provider.
Related
I need some guidance regarding "single sign-on" and "ibm security verify access v10". I am not particularly a programmer but based on the task given to me i created a simple PHP based web app that uses html form (username/password) and authenticates users against "traditional microsoft active directory" and i used "xampp apache web server" and sometimes "IIS web server".
Now i am trying to do is to give my web app single sign-on using ibm security verify access but i am getting confused and lost here because it's not easy to find information related to this exact configuration. One concept that might be useful is i think 'Forms Single Sign-on" but I can't find out a clear configuration example so i can compare and implement. I need help with this i.e what is the best SSO option based on my situation and how or where i can find se material e.g how to implement forms sso in this situation. I am still in training phase and merely month and a half in so most of its overwhelming.
My setup that i have right now is:
1: one VM for Security Verify Access console
2: one VM which runs windows server 2016 amd active directory where i have created some users
3: one VM running same OS and Security Directory Server as my external LDAP
4: A simple php HTML form based web app
Thank you.
It seems you need to implement on premise integration with IBM Security Verify, if yes check out following document
IBM security verify with AD
This is just to understand what SSO is how to integrate with SAML & how everything works.
How SSO works with SAML
Hope this get you started on path
I have a Windows Azure subscription.
My requirement is to run a PHP script on my server. This PHP script will create a JSON file.
This JSON file will be downloaded by my iOS app. (Some kind of authentication is an added bonus)
How would I go about doing this? Should I create a "Mobile Service" or should I create a "Website" or something else like "Cloud Services"?
As far as I have researched, I think the only way to do this would be the old school website way. Any input on this will be really helpful. Thanks.
Mobile services are great if you want to create a quick CRUD layer for an app with a backend cloud storage such as Azure SQL DB. It also provides support for scheduled tasks and push notification. But for what you're after (producing a JSON file), you may find it easier to go with Azure Web Sites or Azure Cloud Services (PaaS). Azure Web Sites has a model that you'll likely find easier and with the free/shared tiers, provides a lower cost point for many models. If you want something that gives you a bit more control, then Cloud Services might be a good alternative as well. But given the simple example you've provided, you should be able to accomplish this fairly quickly using Web Sites.
I have WPF app and Web browser control in it. I am opening a web page which is a php application.
I need to pass my machine credential's to the php application.
The Web browser control opens a [http://app/login.php]. The user has logged onto the machine with his domain credential's. The PHP website uses windows authentication..
Both the WPF application and php site are internal application(i.e. same domain)
You have a CakePHP application and a login.php? Then there is something seriously wrong with it.
You need to get your current logged in users identity and pass that on to the php application.
See Using windows authentication with php?
If you're using CakePHP 2.0 you might find an LDAP adapter for the AuthComponent. I guess you can use google to find more, I don't know if this one here is any good or not http://www.analogrithems.com/rant/2012/01/03/cakephp-2-0-ldapauth/
My answer covers the CakePHP part
Best practice would be to communicate using REST, between your wpf and cakephp. CakePHP provides a very easy way to connect your actions via REST. You will have to connect your authentication method using the REST.
Cake's documentation has a nice section on REST from CakePHP.
I am trying to expose our APIs to the clients and users and I want to allow them to access it only in case when they authorize themselves from our database using Oauth 2.0. I am planning to write it in core PHP. I have done enough research to find it on web. I have seen few codes on http://oauth.net/code under PHP section, but still not able to setup it in running condition. Can someone tell me the exact procedure to setup it on windows xampp machine or any library that I can deploy it directly.
Our company currently offers free sub-domains for redirects to our customers. These are quite a popular feature, but unfortunately every time someone requests it, our staff must login to the Plesk panel and manually create this. It is only specifying the DNS name and an IP Address for the A-Record, but it would be great to be able to automate this in our Billing System for easy creation.
As I am not overly familiar with Plesk, does anyone know how I may be able to proceed with handling the creation of an A-Record in our Plesk install via PHP?
you can use the commandline interface or directly using the rpc api of plesk. see http://www.parallels.com/ptn/documentation/plesk/ for more information.
for commandline this seems simple enough:
http://download1.parallels.com/Plesk/PP10/10.1.1/Doc/en-US/online/plesk-unix-cli/37771.htm
As per my knowladge, Plesk is an interface for interacting and Managbe your web server settings. But It don't provide free api for doing stuff you have asked for.
You can use RPC API for the same. But that works using command prompt.
I am sure that would be bit complex to do.