P5-authen-paas

Jul 20, 2023

Perl Authentication & Authorization Service

The AuthenPAAS distribution provides a Perl API for authenticating and authorizing users of computing services. Its design is inspired by existing pluggable authentication services such as PAM and Java’s JAAS, so people familiar with those two services should be comfortable with the concepts in AuthenPAAS. At its heart, AuthenPAAS provides a login service, with pluggable modules for performing different authentication schemes. The pluggable framework enables the system administrator, rather than the application developer to define what method is used to authentication with a particular application.

One might ask, why not just use PAM directly via the existing AuthenPAM Perl bindings. While this works well for applications which wish to authenticate against real UNIX user accounts eg FTP, Telnet, SSH, it is not particularly well suited to applications with ‘virtualized’ user accounts. For example, a web application may maintain a set of virtual user accounts in a database, or a chat server, may maintain a set of user accounts in a text configuration file. Since it merely delegates through to the underlying C libraries, the AuthenPAM module does not provide a convenient means to write new authentication schemes in Perl. Thus the AuthenPAAS distribution provides a pure Perl API for authentication.



Checkout these related ports:
  • Zzuf - Transparent application input fuzzer
  • Zlint - X.509 certificate linter
  • Zeronet - Decentralized websites using Bitcoin crypto and BitTorrent network
  • Zenmap - GUI frontend for the Nmap scanning utility
  • Zeek - System for detecting network intruders in real-time
  • Zaproxy - The OWASP zed attack proxy
  • Yubioath-desktop - GUI for displaying OATH codes with a Yubikey
  • Yubikey-personalization-gui - Graphical YubiKey personalization tool
  • Yubikey-manager-qt - Cross-platform application for configuring any YubiKey
  • Yubikey-agent - Seamless ssh-agent for YubiKeys
  • Yubico-piv-tool - Yubico PIV tool
  • Ylva - Command line password manager and file encryption program
  • Ykpers - Library and tool for personalization of Yubico's YubiKey
  • Ykclient - Yubico C client library
  • Yersinia - Layer 2 vulnerability scanner (switches, spanning tree, 802.1q ...)