RT-6 AuthToken API Authentication - Apache2 FCGID

Anish_Parameswaran · June 3, 2025, 5:47am

In case if apache2 fcgid-script handler is being used for RT 6 , I found these following virtualhost settings working ( for passing authorization header to RT )


    RewriteEngine On
    RewriteCond %{HTTP:Authorization} ^(.*)
    RewriteRule .* - [E=HTTP_AUTHORIZATION:%1]

    <Directory "/opt/rt/share/html">
        AllowOverride All
        Options +ExecCGI
        Require all granted
    </Directory>

    <Directory "/opt/rt/sbin">
        Require all granted
        Options +ExecCGI
        SetHandler fcgid-script
    </Directory>

Jim_Brandt · June 11, 2025, 9:14pm

We have a note in our documentation for RT::Authen::Token with a suggested Apache rule to pass through the header as an environment variable.