Project

General

Profile

Actions
Copy link

Bug #1771

closed

HTTP_authentication does not work for forms

Added by Romain Vrignaud over 11 years ago. Updated over 11 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Authentication
Target version:
1.1
Difficulty:
Triaged:
Bugzilla link:
Pull request:
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

When I use authorize_login_delegation, I'm never redirected to /users/login
but when I try to use auto_complete_search, I get a 401

See in logs :

Started GET "/hosts/auto_complete_search?search=" for 192.168.200.117 at Mon Jul 23 11:08:50 +0200 2012
Processing by HostsController#auto_complete_search as JSON
Parameters: {"search"=>""}
Completed 401 Unauthorized in 2ms

And I have a box in my browser with message :
"A username and password are being requested by http://foreman.example.com. The site says: "Application""

Related issues 1 (0 open1 closed)

Related to Foreman - Feature #1820: Authenticate API calls via REMOTE_USER too Closed08/13/2012Actions
Actions
Copy link
 #1

Updated by Romain Vrignaud over 11 years ago

Logs with debug mode :

Started GET "/hosts/auto_complete_search?search=" for 192.168.200.117 at Mon Jul 23 11:16:35 +0200 2012
Processing by HostsController#auto_complete_search as JSON
Parameters: {"search"=>""}
Setting Load (0.5ms) SELECT `settings`.* FROM `settings` WHERE `settings`.`name` = 'authorize_login_delegation' ORDER BY LOWER LIMIT 1
CACHE (0.0ms) SELECT `settings`.* FROM `settings` WHERE `settings`.`name` = 'authorize_login_delegation' ORDER BY LOWER LIMIT 1
Completed 401 Unauthorized in 123ms

Actions
Copy link
 #2

Updated by Romain Vrignaud over 11 years ago

  • Assignee deleted (Ohad Levy)
  • Target version set to Bug scrub
Actions
Copy link
 #3

Updated by Joseph Magen over 11 years ago

  • Status changed from New to Assigned
  • Assignee set to Joseph Magen
Actions
Copy link
 #4

Updated by Joseph Magen over 11 years ago

  • Status changed from Assigned to Need more information
  • Assignee deleted (Joseph Magen)

I could not duplicate

Actions
Copy link
 #5

Updated by Ohad Levy over 11 years ago

You need to setup apache with REMOTE_USER header (authentication delegation).

Actions
Copy link
 #6

Updated by Romain Vrignaud over 11 years ago

To be clear : the websso is working : I'm authenticated with
authorize_login_delegation and Foreman find my user.
However the only thing is when I clear my browser cache,
I get asked just once at the precise instant when I click on
search tab with a HTTP authentication window (not /users/login).

In the log I get a 401 Unauthorized if I don't log myself

Actions
Copy link
 #7

Updated by Romain Vrignaud over 11 years ago

  • Status changed from Need more information to Closed

This has been fixed in develop with the setting : authorize_login_delegation_api

Actions
Copy link

Also available in: Atom PDF