Recent changes to AuthenticationOptions

WikiPage AuthenticationOptions modified by Adam Tauno Williams

Adam Tauno Williams — Thu, 14 Feb 2013 12:21:40 -0000

--- v3
+++ v4
@@ -4,23 +4,28 @@

    Option | Description
    -------|------------
-   StripAuthenticationDomain |
-   AllowSpacesInLogin |
-   LSUseLowercaseLogin |
+   **StripAuthenticationDomain** | Strips the login value up to and including the first slash.  This will change a login of "coils.example.com\adam" to "adam".  This is useful for [some clients](MSRedirector) which may automatically qualify the username with a domain.
+   **AllowSpacesInLogin** | This option is for compatibility with [OpenGrouwpare Legacy](https://sourceforge.net/projects/opengroupware/), it currently has not effect on how Coils processes authentication.
+   **LSUseLowercaseLogin** | If enabled the login value will be changed to lower-case before matched to the account database.  Several authentication backends, including LDAP, process account names as case-insensitive strings while others are case-sensitive.  Set this directive according to the authentication backend in use.

-If you are attempting to use the Microsoft Windows Filesystem Redirector to access or mount OpenGroupware Coils via WeDAV and are failing with a "System Error 5 has occurred" enabling the ___StripAuthenticationDomain___ is a probable solution.
+All these options are **YES** / **NO**.
+
+    coils-server-config --directive=LSUseLowercaseLogin --value=YES
+    coils-server-config --directive=LSUseLowercaseLogin --value=YES
+
+If you are attempting to use the [Microsoft Windows Filesystem Redirector](MSRedirector) to access or mount OpenGroupware Coils via WeDAV and are failing with a "System Error 5 has occurred" enabling the ___StripAuthenticationDomain___ is a probable solution.

 ##Trusted Hosts

-The ___PYTrustedHosts___ configuration directive is a list of hostnames from which connections should be __trusted__.  When a connection is trusted the credentials are not verified, the connection will be authenticated as the declared user/context.
+The **PYTrustedHosts** configuration directive is a list of hostnames from which connections should be __trusted__.  When a connection is trusted the credentials are not verified, the connection will be authenticated as the declared user/context.

     coils-server-config --directive=PYTrustedHosts --value='["host1.example.com","host2.example.net"]'

-Be cautions when adding host names to ___PYTrustedHosts___.  DNS is not necessarily a secure server and, especially if proxy servers are involved, the true origin of a connection can be obscured.
+Be cautions when adding host names to **PYTrustedHosts**.  DNS is not necessarily a secure server and, especially if proxy servers are involved, the true origin of a connection can be obscured.

 ##LDAP Authentication

-LDAP Authentication is enabled for BASIC authentication if the ___LSAuthLDAPServer___ directive is defined.
+LDAP Authentication is enabled for BASIC authentication if the **LSAuthLDAPServer** directive is defined.

    Option | Description
    -------|-----------

WikiPage AuthenticationOptions modified by Adam Tauno Williams

Adam Tauno Williams — Thu, 14 Feb 2013 12:14:38 -0000

--- v2
+++ v3
@@ -1,6 +1,14 @@
 #Authentication Options

 ##General Options
+
+   Option | Description
+   -------|------------
+   StripAuthenticationDomain |
+   AllowSpacesInLogin |
+   LSUseLowercaseLogin |
+
+If you are attempting to use the Microsoft Windows Filesystem Redirector to access or mount OpenGroupware Coils via WeDAV and are failing with a "System Error 5 has occurred" enabling the ___StripAuthenticationDomain___ is a probable solution.

 ##Trusted Hosts

WikiPage AuthenticationOptions modified by Adam Tauno Williams

Adam Tauno Williams — Thu, 14 Feb 2013 12:12:12 -0000

--- v1
+++ v2
@@ -1,4 +1,3 @@
-
 #Authentication Options

 ##General Options
@@ -16,7 +15,7 @@
 LDAP Authentication is enabled for BASIC authentication if the ___LSAuthLDAPServer___ directive is defined.

    Option | Description
-   -------+-----------
+   -------|-----------
    LSAuthLDAPServer |
    LSAuthLDAPSearchFilter | 
    LSAuthLDAPServerRoot |

WikiPage AuthenticationOptions modified by Adam Tauno Williams

Adam Tauno Williams — Thu, 14 Feb 2013 12:11:54 -0000

Authentication Options

General Options

Trusted Hosts

The PYTrustedHosts configuration directive is a list of hostnames from which connections should be trusted. When a connection is trusted the credentials are not verified, the connection will be authenticated as the declared user/context.

coils-server-config --directive=PYTrustedHosts --value='["host1.example.com","host2.example.net"]'

Be cautions when adding host names to PYTrustedHosts. DNS is not necessarily a secure server and, especially if proxy servers are involved, the true origin of a connection can be obscured.

LDAP Authentication

LDAP Authentication is enabled for BASIC authentication if the LSAuthLDAPServer directive is defined.