Knowledge Base

Using Remote Authentication

Article ID: 379
Last updated: 09 Oct, 2017

Remote authentication allows you to integrate your organization's authentication system with KBPublisher.

Before you start:

  • We assume that you have some experience with PHP and with the system you are connecting to.

Steps to enable Remote Authentication​

  • Click on Settings -> Authentication Provider -> Remote 
  • Check Enable Remote Authentication checkbox (make sure that $conf['auth_remote'] in the file admin/config.inc.php is set to 1)
  • Set required values for constants in file admin/lib/custom/remote_auth.php
  • Customize the _remoteDoAuth function in the file admin/lib/custom/remote_auth.php to authenticate the username and password passed to it against your own authentication system
  • Rename the function _remoteDoAuth to remoteDoAuth

Quick summary of the process

  • End user goes to site
  • Remote Authentication checks for valid user credentials
    • If auto-authentication is set, does this automatically
    • If auto-authentication is not set, user logs in first
  • KBPublisher authenticates the user .

KBPublisher public view

Customizing the remoteDoAuth function

In your installation there is a folder admin/lib/custom. Within that folder is a file called remote_auth.php. This file contains the _remoteDoAuth function. Customize this function to do authentication against your internal system by using the username and password provided.

Here is a simple example of the function customized to authenticate against a MySQL database:

function remoteDoAuth($username, $password) {

    $user = false;
    $db = &DBUtil::connect($conf);

    $sql = "SELECT 1 FROM ss_user WHERE username = '%s' AND password = '%s'";
    $sql = sprintf($sql, $username, $password);
    $result = &$db->Execute($sql) or die(db_error($sql, false, $db));

    // if found
    if($result->RecordCount() == 1) {
        $user = 1; // assign a user id, this user id should exists in kb user table
    }

    return $user;
}

 Also see examples in attached files.

Tracking logins

You can see how your remote authentication works in logs Logs/Logins

For debugging every last login is logged to a file called last_remote_login.log in the KBPublisher cache directory (APP_CACHE_DIR in admin/config.inc.php ).
For example: /home/username/ kb_cache/last_remote_login.log

Article ID: 379
Last updated: 09 Oct, 2017
Revision: 4
Views: 5343
Comments: 0
print  Print pdf  Export to PDF email  Subscribe share  Share pool  Add to pool comment  Add comment
Prev     Next
Remote Authentication       Using Active Directory for Remote Authentication