[Mono-list] mod_mono sharing application session data

Chris Turchin chris@turchin.net
Thu, 29 Jul 2004 09:34:15 -0700 (PDT)


One secure solution would be doing custom digest authentication in an
IHttpModule  which is then valid for the various applications. The
authentication module could then be shared by all applications and maybe rather
than a flat file you could use a DB or LDAP for the back end. ;-)

In addition, you could fall back to BASIC authentication if the digest is not
supported (though I think all modern browsers support it nowadays).

I did something like this a while back and though it was not for multiple apps,
I think if you used the same 'realm' (see the spec.) for all your
applications then it should work.

There are a number of sample on how to do this in .NET out there.

Here is one:



On Thu, 29 Jul 2004, Matthew Metnetsky wrote:

> I've searched google and found almost no information on this, so I
> figured I'd ask here.
> Has anyone had any luck of sharing HttpSession data between applications
> (basically directories) ?  The site I'm beginning to build requires 1
> login for multiple modules and I'd really rather not have a flat file
> structure for such a huge application.
> Any ideas?
> ~ Matthew
> _______________________________________________
> Mono-list maillist  -  Mono-list@lists.ximian.com
> http://lists.ximian.com/mailman/listinfo/mono-list