[rt-users] LDAP auth
Iain Pople
iain at webcentre.unimelb.edu.au
Sun Jul 18 21:39:39 EDT 2004
Replying to myself....
Could it be that Fast CGI can't access the variable REMOTE_USER? How
would i check this?
cheers, Iain.
Iain Pople wrote:
> Hi,
>
> I am having trouble getting the LDAP authentication to work.
>
> Here are the relevant lines from RT_SiteConfig.pm:
>
> # If $WebExternalAuth is defined, RT will defer to the environment's
> # REMOTE_USER variable.
>
> Set($WebExternalAuth , 1);
>
> # If $WebFallbackToInternalAuth is undefined, the user is allowed a chance
> # of fallback to the login screen, even if REMOTE_USER failed.
>
> Set($WebFallbackToInternalAuth , undef);
>
> # $WebExternalGecos means to match 'gecos' field as the user identity);
> # useful with mod_auth_pwcheck and IIS Integrated Windows logon.
>
> Set($WebExternalGecos , undef);
>
> # $WebExternalAuto will create users under the same name as REMOTE_USER
> # upon login, if it's missing in the Users table.
>
> Set($WebExternalAuto , undef);
>
> and in my apache config:
>
> <VirtualHost *>
> ServerName issue-tracker.webcentre.unimelb.edu.au
> DocumentRoot /usr/local/share/rt/share/html/
> Alias /NoAuth/images/ /usr/local/share/rt/share/html/NoAuth/images/
> FastCgiIpcDir /tmp
> FastCgiServer /usr/local/share/rt/bin/mason_handler.fcgi
> -idle-timeout 120
> AddHandler fastcgi-script fcgi
> ScriptAlias / /usr/local/share/rt/bin/mason_handler.fcgi/
> </VirtualHost>
> # LDAP integration
> <Directory /usr/local/share/rt/share/html/>
> AuthType Basic
> AuthName "Request Tracker Login"
> AuthLDAPURL ldap://directory.unimelb.edu.au:389/o=The University
> of Melbourne,c=AU?uid?sub?(objectclass=unimelbStaff)
> require valid-user
> </Directory>
>
> After i login i see the following screen:
>
> http://www.webcentre.unimelb.edu.au/~iain/rt/ldap.pdf
>
> any ideas???
>
> thanks, Iain.
>
>
> _______________________________________________
> http://lists.bestpractical.com/cgi-bin/mailman/listinfo/rt-users
>
> Be sure to check out the RT wiki at http://wiki.bestpractical.com
>
More information about the rt-users
mailing list