IntrFilt Authorisation


The IntrFilt Goserve filter provides basic authorisation for multiple Realms. Each Realm has its own password file, containing userid and password for each user authorised within the Realm. Each Realm may be applied to one or more directory structures within the "web space". Authorisation is tested against the actual directory path (NOT the URL) after any translation has been performed. It is assumed that all file accesses are made within the "Home" directory structure for the host (See Multiple Host support). Authorisation is automatically applied to all files and sub- dierectories unless an over-riding Realm is specified at a lower level.

The structure of a Realm entry is:

The Paths are ordered in descending alphanumeric sequence, and are stored in UPPER case. This allows the following type of entry where Realm "secure2" is applied to the "secret" subdirectory of "/confidential", while Realm "secure" is applied to "/confidential" and "/confidential/notsecret". No protection is applied to the "/confidentail/public" directory.

The authorisation settings are stored in the Globals file for each host under the following section:

The Realm definition file is stored in  a sub-directory of the globals file, i.e Under the RULES sub-Directory of the parent of the web space directory of the server as returned by the dir() goserv function. Each Host has a sub-directory named after the short domain name. Each Realm has an account definition file named Realmname.acc, and by default the password file is named Realmname.pwd, where Realmname is the name of the Realm as used in the Realm entries above.

The Realmname.acc file is best created using the supplied cgi programs, but generally follows the format for NCSA servers. Similarly, the password file can be created and maintained by the supplied cgi programs.

The password file has the format:

No encryption is used on the password file.

The filter program does not give WWW access to the the RULES directory unless it specifically included within the Alias section..


|- Redirection -|- Hosts -|- Authorisation -|- Click Maps -|- Business Objects -|- Archiving -|- Globals -|- HTML Level Switching -|- cgi Processing -|


Designed by and Copyright 1996 Derek Sims