Is it possible to authenticate users against an external system in all cases?
For example in our setup the users would already have a cookie (from the proper domain) that contains their validated sign on token. We would like to use this for authorization into Zimbra.
To be clear our ideal scenario doesn't involve making pre-calls or anything of that nature to Zimbra, rather we would like to implement an extension that would automatically read the existing cookie and determine that the user is authorized (it could make calls to our auth system to make sure it is still valid etc).
At first I thought this blog post seemed promising: » Zimbra :: Blog
however it doesn't quite seem to do what we need; it appears this is more for accessing the SOAP API externally. AuthProvider still seems promising however currently it seems in my testing only the SOAP authToken method is ever called where we don't have access to the cookies (not super surprising since the web-client uses SOAP).
Is this possible somehow? Previously I've also implemented a ZimbraCustomAuth which is alright but it still requires the user to log in at the Zimbra login page. Better would be to just have our AuthProvider always called with the 'raw' request and we could simply validate the already existing cookie...
Thx for input!