As of Friday, I’ve just put the finishing touches together on v0.1 of
my custom external MySQL authentication module. Hopefully soon, I will
be integrating it into the LDAP custom module so that you can have one
module for all forms of external auth (starting with just these two).
In the meantime I have something MUCH more important to work on, I need
users that are logged in on the website to be able to bypass RT
All the user creation and information updating is dealt with in the
custom MySQL module, so I don’t want to pass any user information into
RT, but I do need the website to be able to tell RT: The user
has had his credentials authenticated and you should not prompt for any,
just load the user.
So far, I haven’t discovered how I should do this. Apache authentication
and directly applying WebExternalAuth is not a valid option because
Apache would still be prompting for credentials as the website does not
use apache authentication, it’s custom PHP authentication.
Also, there is code that is included whenever a page is loaded with a
logged-in user, if that would help.
Also, the website uses session-cookies to store authentication? Could RT
read these somehow, or could we combine the RT cookies with the website
Mike Peachey, IT
Tel: +44 114 281 2655
Fax: +44 114 281 2951
Jennic Ltd, Furnival Street, Sheffield, S1 4QT, UK
Comp Reg No: 3191371 - Registered In England