Feature #1300
closed
Foreman should support HTTP Authentification
Added by Romain Vrignaud almost 13 years ago.
Updated almost 13 years ago.
Description
Hello,
It would be great to allow HTTP Authentification in Foreman
(for instance to allow things like WebSSO with LemonLDAP::NG).
Thx in advance.
Files
- Assignee set to Romain Vrignaud
First patch : to be tested and validated
I've tested this patch on 0.4 and it seems to work sufficiently okay. The edge cases aren't covered such as:
- If the auth succeeds but the user doesn't exist, the error is not graceful.
- It may be that someone wants the user to get created in the case of a user not existing in the INTERNAL_DATABASE.
Otherwise its a great start. Thanks Romain :-).
settings.yaml:
---
:login: true
:authorize_login_delegation: true
Sample apache config:
<VirtualHost *:80>
ServerName foreman1.vm
ServerAdmin ken@bob.sh
DocumentRoot /usr/share/foreman/public
Railsautodetect on
<Location />
AuthType Basic
AuthName "Restricted Files"
AuthUserFile /etc/httpd/auth.pwd
Require Valid-User
</Location>
</VirtualHost>
New patch to handle case when user is not found.
Update patch to support WUI settings.
- Category set to Authentication
- Target version set to 1.0
- Status changed from New to Closed
- % Done changed from 0 to 100
Also available in: Atom
PDF