-
-
Notifications
You must be signed in to change notification settings - Fork 629
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Authentication / ACL seems broken #182
Comments
Hi, Usernames are case sensitive. Your Can you change your configuration to read |
Hi ! Yes, you are correct. I see this "errata" but i see that ivre.conf contains "admin". ( Was an error using google translator jejeje ). |
OK so you confirm that it is still broken? |
Hi Pierre; Yes, I confirm i have on ivre.conf:
I test again but same results :-( Sorry again for the typo and the delay responding you. |
No worries! Let's find out what happens here. Can you upgrade to the latest version from GitHub (with #184), add a line |
I was testing some things but same results :-( Also, I update code with new files from #184 but same. Looks like a problem when read "REMOTE_USER". This is what i get when DEBUG=TRUE If I force 'get_user()' to 'admin' on webutils.py, work. If I force 'get_user()' to any string, fails: *** 'any string', 0 results *** If i use a default value for "REMOTE_USER", also works. The code on webutils.py:
I start to think that is a problem with python/apache environment or how i configure apache auth. |
Solved !!! ( well.... I think :-) ) After too many test,errors and headache; I think I found my error (stupid error). I created a env.cgi file on /usr/lib/cgi-bin which content is:
And when access to http:\192.168.0.23\cgi-bin\env.cgi, I get information whithin "REMOTE_USER" so the problem was here. On Debian 8.2, edit /etc/apache2/conf-available/serve-cgi-bin.conf:
You can see But, important, you also need the .htaccess file on /usr/lib/cgi-bin/. If no exist .htaccess on this directory, REMOTE_USER = none !!. I probe with the same .htaccess file on /var/www/html and /usr/lib/cgi-bin; and works. It also works if we have only .htaccess on /usr/lib/cgi-bin Besides, I have successfully tested this using basic and digest authentication :-) Thanks Pierre! |
All right! Glad you've found that issue. So to sum up, in case someone else faces the same issue: the most important is to authenticate the access to the CGI file. May I close this issue? |
Yes, you can. Thanks Pierre je suis paris |
Thanks. |
I'm trying IVRE authentication without much success and I do not know if it's something I'm doing wrong. I explain:
I create a new configuration file to enable some IVRE options:
And I add the following content:
Well, with this configuration, when access IVRE, I do not get results.
![1](https://cloud.githubusercontent.com/assets/15417469/11103365/4692bbca-88c2-11e5-9e6e-a5bc03cc0e9d.png)
Consulting /usr/local/lib/python2.7/dist-packages/ivre/webutils.py note that employs variable "REMOTE_USER"
As I do not know if IVRE authentication uses Dokuwiki, I login in Dokuwiki and test access without result. You can see as i`m "admin" on Dokuwiki
![3](https://cloud.githubusercontent.com/assets/15417469/11103463/bd97c2ec-88c2-11e5-9bad-6bc21e223442.png)
Well... I Create a php file with phpinfo (); to see which user is being sent but not REMOTE_USER variable appears :-(
Next, I configure Apache with authentication so that when access IVRE, It ask me username/password
Access to IVRE
![4](https://cloud.githubusercontent.com/assets/15417469/11103596/af69b440-88c3-11e5-9e09-f147221b1499.png)
Now, I can see that Apache/php recognizes "REMOTE_USER"
![6](https://cloud.githubusercontent.com/assets/15417469/11103574/81a42db0-88c3-11e5-82c7-7ab6a9201bc9.png)
But ... again, no results :-(
![5](https://cloud.githubusercontent.com/assets/15417469/11103639/faffb346-88c3-11e5-946b-28f3ed11a206.PNG)
If I set "WEB_DEFAULT_INIT_QUERY = none", I can see all hosts on IVRE as enable default value ( none = full )
![2](https://cloud.githubusercontent.com/assets/15417469/11103681/40fcefee-88c4-11e5-9af3-ed0e4c28bd58.png)
What am i doing wrong ??
Ahh... thanks for read me
The text was updated successfully, but these errors were encountered: