From: <de...@de...> - 2014-07-13 20:50:17
|
Author: PeterThoeny Date: 2014-07-13 15:47:20 -0500 (Sun, 13 Jul 2014) New Revision: 27840 Trac url: http://develop.twiki.org/trac/changeset/27840 Modified: twiki/trunk/core/data/TWiki/TWikiUserAuthentication.txt Log: Item7368: Add links to RFC and apache docs -- thanks TWiki:Main.DavidTonhofer Modified: twiki/trunk/core/data/TWiki/TWikiUserAuthentication.txt =================================================================== --- twiki/trunk/core/data/TWiki/TWikiUserAuthentication.txt 2014-07-11 05:28:48 UTC (rev 27839) +++ twiki/trunk/core/data/TWiki/TWikiUserAuthentication.txt 2014-07-13 20:47:20 UTC (rev 27840) @@ -1,4 +1,4 @@ -%META:TOPICINFO{author="TWikiContributor" date="1396307807" format="1.1" version="$Rev$"}% +%META:TOPICINFO{author="TWikiContributor" date="1405284590" format="1.1" version="$Rev$"}% %STARTINCLUDE% ---+ TWiki User Authentication @@ -89,9 +89,9 @@ #ApacheLogin ---+++ Apache Login (select =TWiki::LoginManager::ApacheLogin= in configure) -Using this method TWiki does not authenticate users internally. Instead it depends on the =REMOTE_USER= environment variable, which is set when you enable authentication in the webserver. +Using this method TWiki does not authenticate users internally. Instead it depends on the =REMOTE_USER= environment variable, which the webserver passes to TWiki when you enable authentication in the webserver (as described in [[http://www.ietf.org/rfc/rfc3875][RFC 3875 - "The Common Gateway Interface v1.1"]]). -The advantage of this scheme is that if you have an existing website authentication scheme using Apache modules, such as =mod_auth_ldap= or =mod_auth_mysql=, you can just plug in directly to them. +The advantage of this scheme is that if you have an existing website authentication scheme using Apache modules, such as =[[http://httpd.apache.org/docs/current/mod/mod_authnz_ldap.html][mod_authnz_ldap]]= or =[[http://httpd.apache.org/docs/current/mod/mod_authn_dbd.html][mod_authn_dbd]]=, you can just plug in directly to them. The disadvantage is that because the user identity is cached in the browser, you can log in, but you can't log out again unless you restart the browser. |