IMPORTANT: This guide assumes that you are installing all the components of the Identity Solution in the same system, and that you try it out from the same system (i.e., we assume that everything is done within the localhost).
This sample demonstrate how the relying party Apache2 module (mod_cspace) can be used to enable CardSpace authentication on a PHP web application.
Requirements:
Please refer to the following web sites for information on installing Apache2 with SSL/TLS enabled:
NOTE: you do not have to generate your own keys. This sample provides you the keys required. The keys
directory contains three PEM encoded files: server.key
, server.crt
, and cacert.crt
which are respectively the server private key, server certificate (public key), and certificate authority's certificate.
Your configuration of keys in httpd.conf
should look like the following:
SSLCertificateFile /usr/local/apache2/conf/keys/server.crt SSLCertificateKeyFile /usr/local/apache2/conf/keys/server.key SSLCACertificateFile /usr/local/apache2/conf/keys/cacert.crt
If you built mod_cspace using the source distribution, copy libmod_cspace.so
file inside the .libs
directory to the modules directory of your apache installation as mod_cspace.so
. (/usr/lib/apache2/modules/
is the modules directory of a typical apache2 installation)
In addition, you may install the module using the packages provided (.deb and .rpm), if you happen to be on one of the supported platforms.
Copy php-sample
directory to the document root of your Apache2 installation.
httpd.conf
)Following configuration should be done in your httpd.conf
file of the Apache 2 installation. Assuming that you have copied the php-sample
to the document root of your Apache2 installation, the configuration in your httpd.conf
should be as follows:
LoadModule cspace_module modules/mod_cspace.so <Location /php-sample/> UseCardSpaceAuth </Location>IMPORTANT:
SSLCertificateKeyFile
directive should be already in the httpd.conf
file.Point your browser to the location you have installed the web application. If you followed this guide properly, it will be https://localhost/php-sample/ .
Now you can try out the sample PHP web application.
IMPORTANT:cacert.crt
certificate in your certificate stores so that the web app will be trusted by the identity-selector.