After harvesting the ML archives, I didn’t find any clues about my problem.
Here is the point, I use LDAP to authenticate my users on the apache
server, and would like RT to consider the user is logged and not
presenting the logging box.
When i log in by apache, i still have the login prompt from RT …
The user exists in both ldap and RT with same username and I checked the
REMOTE_USER that is correct (thx phpinfo()).
I use RT 3.0.5
Here are excerpts from my config :
Apache:
AddHandler fastcgi-script fcgi
ScriptAlias /restricted/rt3 /opt/rt3/bin/mason_handler.fcgi/
Alias /NoAuth/images/ /opt/rt3/share/html/NoAuth/images/
RT:
If $WebExternalAuth is defined, RT will defer to the environment’s
REMOTE_USER variable.
Set($WebExternalAuth , 1);
If $WebFallbackToInternalAuth is undefined, the user is allowed a chance
of fallback to the login screen, even if REMOTE_USER failed.
Set($WebFallbackToInternalAuth , 1);
Is there anybody around having an idea of what could be the pb, I found
a similar problem in the archive but no solution and it was talking
about a rather old version of RT.
#=- Stefan Berder tel : 4 76 72 -=#
#=- Ingï¿œnieur systï¿œme et rï¿œseau 01 41 21 76 72 -=#
#=- TRANSPAC / CSIG-SIS-ISS mail : sbe@oleane.net -=#
#=- /(bb|[^b]{2})/ stefan.berder@francetelecom.com -=#
I don’t know exactly but there is one thing I newer understood (never found it documented somewhere)
Which are the parameters to use in SiteConfig?
And here my clue for you, because my system works.
I use :
Set($WebExternalAuth , ‘true’);
Try if it works.
Samuel-----Original Message-----
From: Stefan Berder [mailto:sbe@oleane.net]
Sent: Thursday,25 September,2003 13:54
To: rt-users@lists.fsck.com
After harvesting the ML archives, I didn’t find any clues about my problem.
Here is the point, I use LDAP to authenticate my users on the apache server, and would like RT to consider the user is logged and not presenting the logging box.
When i log in by apache, i still have the login prompt from RT …
The user exists in both ldap and RT with same username and I checked the REMOTE_USER that is correct (thx phpinfo()).
I use RT 3.0.5
Here are excerpts from my config :
Apache:
AddHandler fastcgi-script fcgi
ScriptAlias /restricted/rt3 /opt/rt3/bin/mason_handler.fcgi/
Alias /NoAuth/images/ /opt/rt3/share/html/NoAuth/images/
RT:
If $WebExternalAuth is defined, RT will defer to the environment’s # REMOTE_USER variable.
Set($WebExternalAuth , 1);
If $WebFallbackToInternalAuth is undefined, the user is allowed a chance # of fallback to the login screen, even if REMOTE_USER failed.
Set($WebFallbackToInternalAuth , 1);
Is there anybody around having an idea of what could be the pb, I found a similar problem in the archive but no solution and it was talking about a rather old version of RT.
#=- Stefan Berder tel : 4 76 72 -=#
#=- Ingénieur système et réseau 01 41 21 76 72 -=#
#=- TRANSPAC / CSIG-SIS-ISS mail : sbe@oleane.net -=#
#=- /(bb|[^b]{2})/ stefan.berder@francetelecom.com -=#
rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users
Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm
Stefan Berder wrote:
[snip]
Here are excerpts from my config :
Apache:
AddHandler fastcgi-script fcgi
ScriptAlias /restricted/rt3 /opt/rt3/bin/mason_handler.fcgi/
Alias /NoAuth/images/ /opt/rt3/share/html/NoAuth/images/
[snip]
Okay, after investigating I found the “reason why”.
In fact, the ScriptAlias is aiming a path that is outside the auth
protected area, so in the /opt/rt3 path the REMOTE_USER is no more
valid. I changed my config to the following and all is ok now :
AddHandler fastcgi-script fcgi
ScriptAlias /restricted/rt3
/var/www/exploit/htdocs/restricted/rt3/mason_handler.fcgi/
Alias /NoAuth/images/ /opt/rt3/share/html/NoAuth/images/
Global confg for RT
FastCgiConfig -idle-timeout 60 -maxProcesses 20 -maxClassProcesses 10
FastCgiServer /var/www/root/exploit/htdocs/restricted/rt3/mason_handler.fcgi
#=- Stefan Berder tel : 4 76 72 -=#
#=- Ingï¿œnieur systï¿œme et rï¿œseau 01 41 21 76 72 -=#
#=- TRANSPAC / CSIG-SIS-ISS mail : sbe@oleane.net -=#
#=- /(bb|[^b]{2})/ stefan.berder@francetelecom.com -=#