OpenID-eID

From YobiWiki

Revision as of 21:58, 19 February 2008 by <bdi>PhilippeTeuwen</bdi> (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to navigation Jump to search

Here are my attempts to create an OpenID provider based on the Belgian eID

Let's get apache2, php5 and openssl stuff:

apt-get install apache2-utils apache2-mpm-prefork libapache2-mod-php5 php5 openssl ssl-cert

Details on apache2 config...

requires client certificate
import Belgium Root CA for validation of the client certificates

TODO: cf apache proxy proposed by the government:

Hacking phpMyID

Details on the patch

remove HTTP Digest for the authorization step
redirect authorization to HTTPS as we'll deal with SSL client certificates

Retrieved from "https://wiki.yobi.be/index.php?title=OpenID-eID&oldid=2697"