Skip to content
GitLab
Closed
Issue created by bmortier@bmortierMaintainer

HTTP header authentication

Closed

HTTP header authentication

The goal is to be able to log in trough HTTP Header, which is the default SSO method used by LemonLDAP::NG.

This is different from Basic authentication as we don't provide the password, only the user identifier (as we do with CAS).

I will provide a patch through github for this feature.

I would maybe need some help to add some config parameters in FD core schema to be compliant with upgrade process. Any hint?

(from redmine: issue id 5010, created on 2016-07-13, closed on 2016-08-11)

  • Relations:
    • copied_to #5096
  • Changesets:
    • Revision 2734f68c on 2016-07-28T13:46:36.000Z:
Fixes #5010 Added managedAttribute link between http header auth options
  • Revision 2b326d97 on 2016-07-28T13:48:07.000Z:
Fixes #5010 Added managedAttribute link between http header auth options

Tasks

0

No tasks are currently assigned. Use tasks to break down this issue into smaller parts.

Activity

  • bmortier
    bmortier @bmortier ·
    Author Maintainer

    Oudot Clement wrote:

    I would maybe need some help to add some config parameters in FD core schema to be compliant with upgrade process. Any hint?

    About the config parameters you just need to add the attribute in the core-fd-conf.schema and include it in the MAY of fusionDirectoryConf objectClass. I would advice id 1.3.6.1.4.1.38414.8.15.7, just after fdHttpAuthActivated (You might want to rename this one or rework the description so that HTTP header and basic auth are not mistaken). Then you put an attribute in configInLdap class in the getAttributesInfo returned array. Most likely in login section next to HTTP Basic auth. (you may also want to rework label/description here to explain both methods) Then you can just use $config->get_cfg_value('yourattribute', 'defaultvalue') to get the configured value when you need it. $config is a global var. yourattribute must be written without the 'fd' prefix in this call.

    About the login process itself look at how it works for CAS and Basic auth in index.php.

    (from redmine: written on 2016-07-14)

    By Côme Chilliet on 2017-09-02T15:32:06 (imported from GitLab)

  • bmortier
    bmortier @bmortier ·
    Author Maintainer

    Pull request done: https://github.com/fusiondirectory/fusiondirectory/pull/27

    (from redmine: written on 2016-07-18)

    By coudot on 2017-09-02T15:32:07 (imported from GitLab)

  • bmortier
    bmortier @bmortier ·
    Author Maintainer

    Close issue

    (from redmine: written on 2016-08-11)

    By Jonathan Swaelens on 2017-09-02T15:32:07 (imported from GitLab)

  • bmortier closed

    closed

    By Jonathan Swaelens on 2017-09-02T15:32:07 (imported from GitLab)

  • bmortier added Added label

    added Added label

    By bmortier on 2018-09-27T19:44:16 (imported from GitLab)

Please register or sign in to reply