User guide
Chapter 7: Developing Applications
7-56
Setting User Information Report with Environment
Variables
Information on an authenticated user can be used in a Web application such as a CGI operating on a
business server. A business server reports information to a Web application by attaching it to an HTTP
request header. The Web application can obtain the information by referencing the HTTP request
header through the corresponding interface. For example, a CGI can obtain information from an
environment variable.
The table below lists the information that can be obtained by a Web application.
Table 7-26 Information that can be Obtained by a Web Application
User Information Explanation Example
User DN The user entry stored in user information
in the SSO repository is reported using
DN.
cn=user001,ou=interstage,o
=fujitsu,dc=com
Role name The role name set in the user entry
stored in user information in the SSO
repository is reported. If two or more role
names are set, they are reported by
inserting commas between them. If a
role set is set, the role name(s) set in it
are reported.
Admin,General,Leader
Number of role names The number of reported role names is
reported.
3
Authentication method The authentication method (basicAuth,
CertAuth, or basicAuthAndCertAuth) of
the authenticated user is reported.
When the authentication method
“password authentication or certificate
authentication” is set, basicAuth is
reported for success in password
authentication or CertAuth is reported for
success in certificate authentication.
basicAuth
User ID The user ID presented by the user for
password authentication is reported.
user001
Client IP address The client IP address used for
authentication is reported.
xxx.xxx.xxx.xxx
Authentication time The time at which the user was
authenticated is reported in Greenwich
time (YYYYMMDDHHMMSSZ).
20030901151118Z
Re-authentication
time
The time at which re-authentication was
required is reported in Greenwich time
(YYYYMMDDHHMMSSZ).
20030901154118Z