Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

WWSympa: New "cgi" authentication simply using credentials provided by HTTP server #1499

Merged
merged 1 commit into from
Nov 16, 2022
Merged

WWSympa: New "cgi" authentication simply using credentials provided by HTTP server #1499

merged 1 commit into from
Nov 16, 2022

Conversation

ikedas
Copy link
Member

@ikedas ikedas commented Oct 18, 2022

By this PR. the new "cgi" paragraph(s) may be added in auth.conf:

cgi
    auth_scheme Basic
    remote_user_variable REMOTE_USER
    regexp @my[.]dom[.]ain
    negative_regexp evil@user[.]net

All parameters are optional.

  • remote_user_variable (default value is REMOTE_USER) is the name of CGI variable providing e-mail of the authenticated user.
  • If auth_scheme is specified, authentication is available only when the value of AUTH_TYPE CGI variable matches it.

This is a candidate of changes aim at fixing #1497.

This was referenced Oct 18, 2022
Closed
Closed
@m0ppers
Copy link

m0ppers commented Oct 19, 2022

I tested it and it seems to work and solves my usecase 🥳

@salaun-urennes1
Copy link
Collaborator

I didn't test the code, but if seems to be aligned with our discussion on PR #1496 /sympa/pull/1496

@ikedas ikedas linked an issue Oct 20, 2022 that may be closed by this pull request
WWSympa: Authentication mechanism that does not require login if the authentication module allows it #1497
Closed
@ikedas ikedas merged commit b38f970 into sympa-community:sympa-6.2 Nov 16, 2022
@ikedas ikedas deleted the issue-1497_ikedas branch November 16, 2022 00:38
@ikedas
Copy link
Member Author

ikedas commented Nov 16, 2022

Merged. @m0ppers & @salaun-urennes1 , thank you for input & confirmation!

@ikedas ikedas mentioned this pull request Nov 17, 2022
Open
saliyman

This comment was marked as abuse.

Sign in to view

@ikedas ikedas linked an issue Feb 27, 2024 that may be closed by this pull request
OpenID Connect (OIDC) support #1478
Open
@bilias
Copy link

bilias commented Jul 4, 2024
edited
Loading

How do you trigger the authentication for b38f970 ?

Is there an action page for this or a login button?
I'm trying to test this with openid but it does not seem to work.

My apache setup is ok with mod_auth_openidc.
Client is authenticated on the apache apache side, but not on sympa

@ikedas
Copy link
Member Author

ikedas commented Jul 4, 2024

Hi @bilias ,
This issue has been closed. About the settings you want, please post new question to the mailing list or this issue page.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@saliyman saliyman saliyman left review comments

Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
5 participants
@ikedas @m0ppers @salaun-urennes1 @bilias @saliyman