Feature #1300: Foreman should support HTTP Authentification - Foreman

Feature #1300

Foreman should support HTTP Authentification

Added by Romain Vrignaud over 11 years ago. Updated over 11 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Romain Vrignaud

Category:

Authentication

Target version:

1.0

Difficulty:

Triaged:

Bugzilla link:

Pull request:

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Description

Hello,

It would be great to allow HTTP Authentification in Foreman
(for instance to allow things like WebSSO with LemonLDAP::NG).

Thx in advance.

0001-Fixes-1300-with-REMOTE_USER-support.patch	0001-Fixes-1300-with-REMOTE_USER-support.patch	1.37 KB	Romain Vrignaud, 11/15/2011 11:18 AM
0001-fixes-1300-with-REMOTE_USER-support.patch	0001-fixes-1300-with-REMOTE_USER-support.patch	1.41 KB	Romain Vrignaud, 11/15/2011 12:00 PM
apache-auth.patch	apache-auth.patch	1.86 KB	Romain Vrignaud, 12/19/2011 08:37 AM
0001-fixes-1300-Add-support-of-HTTP-Auth-with-REMOTE_USER.patch	0001-fixes-1300-Add-support-of-HTTP-Auth-with-REMOTE_USER.patch	2.27 KB	Romain Vrignaud, 12/19/2011 08:44 AM

Related issues

Associated revisions

Revision 62756323 (diff)
Added by Romain Vrignaud over 11 years ago

fixes #1300 Add support of HTTP Auth with REMOTE_USER env variable

History

#1 Updated by Romain Vrignaud over 11 years ago

Assignee set to Romain Vrignaud

#2 Updated by Romain Vrignaud over 11 years ago

File 0001-Fixes-1300-with-REMOTE_USER-support.patch 0001-Fixes-1300-with-REMOTE_USER-support.patch added

First patch : to be tested and validated

#3 Updated by Ken Barber over 11 years ago

I've tested this patch on 0.4 and it seems to work sufficiently okay. The edge cases aren't covered such as:

If the auth succeeds but the user doesn't exist, the error is not graceful.
It may be that someone wants the user to get created in the case of a user not existing in the INTERNAL_DATABASE.

Otherwise its a great start. Thanks Romain :-).

settings.yaml:

---
    :login: true
    :authorize_login_delegation: true

Sample apache config:

&lt;VirtualHost *:80&gt;
    ServerName foreman1.vm
    ServerAdmin ken@bob.sh
    DocumentRoot /usr/share/foreman/public
    Railsautodetect on

&lt;Location /&gt;
    AuthType Basic
    AuthName "Restricted Files" 
    AuthUserFile /etc/httpd/auth.pwd
    Require Valid-User
    &lt;/Location&gt;
    &lt;/VirtualHost&gt;

#4 Updated by Romain Vrignaud over 11 years ago

File 0001-fixes-1300-with-REMOTE_USER-support.patch 0001-fixes-1300-with-REMOTE_USER-support.patch added

New patch to handle case when user is not found.

#5 Updated by Romain Vrignaud over 11 years ago

File apache-auth.patch apache-auth.patch added

Update patch to support WUI settings.

#6 Updated by Romain Vrignaud over 11 years ago

File 0001-fixes-1300-Add-support-of-HTTP-Auth-with-REMOTE_USER.patch 0001-fixes-1300-Add-support-of-HTTP-Auth-with-REMOTE_USER.patch added

Patch in git patch mode

#7 Updated by Ohad Levy over 11 years ago

Category set to Authentication
Target version set to 1.0

#8 Updated by Anonymous over 11 years ago

Status changed from New to Closed
% Done changed from 0 to 100

Applied in changeset 627563234b0b298b87118de2c944e78f4cd24d26.

Also available in: Atom PDF

	Has duplicate Foreman - Feature #1369: Support Apache Basic Authentication for SSO.	Closed	2011-12-05
	Is duplicate of Foreman - Bug #907: Foreman behind apache with userauth.	Duplicate	2011-05-17

Project

General

Profile

Issues

Custom queries