[EP-tech] Re: MD5 Salted Secure Login

On Tue, 2011-02-08 at 17:59 +0530, Sukhdev Singh wrote:
> Dear All,
> 
> I wish to implement MD5 Salted Login in Latest Version 3.2.5. Have
> someone done it?
> 
> Kindly suggest which scripts I need to tweak.

There is a config callback 'get_login_url' that allows you to supply a
different URL when the user is asked to login:

$c->{get_login_url} = sub {
my( $repo, $target_url ) =  <at> _;

return "http://myrepo/path/to/login?referrer=xyz;
};

This is in EPrints::Apache::Auth cookie-auth.

You could then perform a digest-based authentication at the new URL.

For how to actually log a user in look at EPrints::Apache::Login.

All the best,
Tim.

*** Options: http://mailman.ecs.soton.ac.uk/mailman/listinfo/eprints-tech
*** Archive: http://www.eprints.org/tech.php/
*** EPrints community wiki: http://wiki.eprints.org/