Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update README.md #2

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Update README.md #2

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions authenticator/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
This folder contains the authentication file I use on scripts.mit.edu to authenticate users via their MIT certificates for kswak account creation and login. My web_scripts folder contains all files found in this directory, the most important of which is auth.php, which is accessed via https://sarivera.scripts.mit.edu:444/auth.php and prompts the users for a certificate (specifically because of https:// and :444).

The code is a basic PHP script that reads the Kerberos of the user and encrypts their username using SlowAES and a version of base64 encoding for URL safety. The script also creates a password for the user by concatenating a master password to their name and calculating the md5 hash of that. That has is used as the users password for kswak, but they never need to remember it or type it in because the password is used for logging in through the server.
The code is a basic PHP script that reads the Kerberos of the user and encrypts their username using SlowAES and a version of base64 encoding for URL safety. The script also creates a password for the user by concatenating a master password to their name and calculating the md5 hash of that. That hash is used as the users password for kswak, but they never need to remember it or type it in because the password is used for logging in through the server.

Keep in mind that this specific auth.php file IS ONLY A TEMPLATE!!!! You need to assign the ENCRYPTION_KEY and MASTER variables accordingly so that they match those found in the settings.json file in config/. As such, this script without modification will NOT work in conjunction with kswak if copied and pasted into a scripts locker.

Expand All @@ -9,4 +9,4 @@ The script on https://sarivera.scripts.mit.edu:444/auth.php currently works for
Common issues:
If the server says something like:
Exception while invoking method 'kswak_login' undefined
the problem is probably your MASTER and ENCRYPTION_KEY variables. They must match on the script and kswak! If they don't this (shitty) error message will appear.
the problem is probably your MASTER and ENCRYPTION_KEY variables. They must match on the script and kswak! If they don't this (shitty) error message will appear.