Add support for alternate (non-LDAP) authentication
|Assignee:||Eric Davis||% Done:|
|Category:||Accounts / authentication|
|Target version:||1.0.0 (RC)|
I would like to see a way to add a custom external authenticator. Currently, the "New Authentication Modes" link assumes an LDAP source. Some more information about what I'm trying to do is here: http://www.redmine.org/boards/1/topics/show/495
Once you subclass AuthSource, there should be a way to make it visible to React so that it can be selected in the Authentication administration page.
#3 Updated by Alon Bar-Lev over 4 years ago
This is simple, as I don't know ruby I cannot promis it is the best solution.
But you can have configuration option for a request variable to take the user from.
In order to support basic authentication (kerberos or SSL) under apache with mod_rails, I only had to do the following:
# Returns the current user or nil if no user is logged in def find_current_user + if request.env["REMOTE_USER"] + ( User.find_by_login(request.env["REMOTE_USER"]) rescue nil) - if session[:user_id] + elsif session[:user_id] # existing session (User.active.find(session[:user_id]) rescue nil)
As  wanted to have a different variable... So I guess the actual string may be configurable.
This is very important for enterprise deployment, please set milestone.
#8 Updated by Brian Wells about 3 years ago
I've added a custom external authenticator to Redmine by means of a plugin that modifies the Authentication Sources view to include something other than LDAP.
It would be helpful if there was a more standard way to add a subclass of AuthSource and a custom form for it, but what I've done so far works fine.
-- Brian Wells
#9 Updated by Eric Davis almost 3 years ago
- Category set to Accounts / authentication
- Status changed from New to Closed
- Assignee set to Eric Davis
- Target version set to 1.0.0 (RC)
- % Done changed from 0 to 100
- Resolution set to Fixed