Kerberos authentication backend for Django
pip install django-auth-kerberos
Make sure following settings are configured in settings.py
:
INSTALLED_APPS = (
...
'django_auth_kerberos',
...
)
# kerberos realm and service
KRB5_REALM = 'EXAMPLE.COM'
KRB5_SERVICE = '[hostname]/EXAMPLE.COM'
# Enabled KDC verification defending against rogue KDC responses
# by validating the ticket against the local keytab.
KRB5_VERIFY_KDC = True
# Enable case-sensitive matching between Kerberos and database user names
KRB5_USERNAME_MATCH_IEXACT = True
# redirect url after login
LOGIN_REDIRECT_URL = '/'
# enable kerberos auth backends
AUTHENTICATION_BACKENDS = (
'django_auth_kerberos.backends.KrbBackend',
)
The module contains a positive and a negative authentication test.
The positive test uses the KRB5_TEST_USER
and KRB5_TEST_PASSWORD
settings. It is recommended to not run them as part of a CI test run.