fphammerle/yii2-client-cert-auth

用于通过TLS/SSL/HTTPS客户端证书自动登录的yii2扩展

维护者

详细信息

github.com/fphammerle/yii2-client-cert-auth

源代码

问题

安装: 30

依赖: 0

建议: 0

安全: 0

星标: 1

关注者: 3

分支: 1

公开问题: 0

1.0.0-alpha 2017-07-16 22:31 UTC

Requires

Requires (Dev)

MIT 076e8682484305743bd5ac089bd7a809f839df20

  • Fabian Peter Hammerle <fabian.hammerle.woop@gmail.com>

Authenticationhttpsx509sslyii2client certificate

This package is not auto-updated.

Last update: 2024-09-15 03:13:49 UTC

README

PHP version Build Status

用于通过TLS/SSL/HTTPS客户端证书自动登录的yii2扩展

设置

1. 配置Web服务器

apache

<VirtualHost example.hammerle.me:443>
    # ...

    SSLEngine on
    SSLCertificateFile /etc/somewhere/example-server-cert.pem
    SSLCertificateKeyFile /etc/restricted/example-server-key.pem

    SSLVerifyClient optional
    SSLVerifyDepth 1
    SSLCACertificateFile /etc/somewhere/example-client-cert-ca.pem
    SSLOptions +StdEnvVars
</VirtualHost>

2. 安装扩展

composer require fphammerle/yii2-client-cert-auth

3. 创建表

./yii migrate --migrationPath=./vendor/fphammerle/yii2-client-cert-auth/migrations

4. 在Yii的应用程序配置中启用扩展

$config = [
    // ...
    'bootstrap' => ['clientCertAuth'],
    'components' => [
        // ...
        'clientCertAuth' => \fphammerle\yii2\auth\clientcert\Authenticator::className(),
    ],
    // ...
];

5. 注册客户端证书

$subj = new \fphammerle\yii2\auth\clientCert\Subject;
$subj->identity = \Yii::$app->user->identity;
$subj->distinguished_name = "CN=Fabian,C=AT";
$subj->save();