Feature #1300
Foreman should support HTTP Authentification
Description
Hello,
It would be great to allow HTTP Authentification in Foreman
(for instance to allow things like WebSSO with LemonLDAP::NG).
Thx in advance.
Related issues
Associated revisions
History
#1
Updated by Romain Vrignaud over 11 years ago
- Assignee set to Romain Vrignaud
#2
Updated by Romain Vrignaud over 11 years ago
- File 0001-Fixes-1300-with-REMOTE_USER-support.patch 0001-Fixes-1300-with-REMOTE_USER-support.patch added
First patch : to be tested and validated
#3
Updated by Ken Barber over 11 years ago
I've tested this patch on 0.4 and it seems to work sufficiently okay. The edge cases aren't covered such as:
- If the auth succeeds but the user doesn't exist, the error is not graceful.
- It may be that someone wants the user to get created in the case of a user not existing in the INTERNAL_DATABASE.
Otherwise its a great start. Thanks Romain :-).
settings.yaml:
---
:login: true
:authorize_login_delegation: true
Sample apache config:
<VirtualHost *:80>
ServerName foreman1.vm
ServerAdmin ken@bob.sh
DocumentRoot /usr/share/foreman/public
Railsautodetect on
<Location />
AuthType Basic
AuthName "Restricted Files"
AuthUserFile /etc/httpd/auth.pwd
Require Valid-User
</Location>
</VirtualHost>
#4
Updated by Romain Vrignaud over 11 years ago
- File 0001-fixes-1300-with-REMOTE_USER-support.patch 0001-fixes-1300-with-REMOTE_USER-support.patch added
New patch to handle case when user is not found.
#5
Updated by Romain Vrignaud over 11 years ago
- File apache-auth.patch apache-auth.patch added
Update patch to support WUI settings.
#6
Updated by Romain Vrignaud over 11 years ago
- File 0001-fixes-1300-Add-support-of-HTTP-Auth-with-REMOTE_USER.patch 0001-fixes-1300-Add-support-of-HTTP-Auth-with-REMOTE_USER.patch added
Patch in git patch mode
#7
Updated by Ohad Levy over 11 years ago
- Category set to Authentication
- Target version set to 1.0
#8
Updated by Anonymous over 11 years ago
- Status changed from New to Closed
- % Done changed from 0 to 100
Applied in changeset 627563234b0b298b87118de2c944e78f4cd24d26.
fixes #1300 Add support of HTTP Auth with REMOTE_USER env variable