Last modified: 2007-05-20 12:36:39 UTC

Wikimedia Bugzilla is closed!

Wikimedia has migrated from Bugzilla to Phabricator. Bug reports should be created and updated in Wikimedia Phabricator instead. Please create an account in Phabricator and add your Bugzilla email address to it.
Wikimedia Bugzilla is read-only. If you try to edit or create any bug report in Bugzilla you will be shown an intentional error message.
In order to access the Phabricator task corresponding to a Bugzilla report, just remove "static-" from its URL.
You could still run searches in Bugzilla or access your list of votes but bug reports will obviously not be up-to-date in Bugzilla.
Bug 828 - HTTP authentication
HTTP authentication
Status: RESOLVED FIXED
Product: MediaWiki
Classification: Unclassified
User login and signup (Other open bugs)
unspecified
All All
: Normal enhancement with 3 votes (vote)
: ---
Assigned To: Nobody - You can work on this!
:
Depends on: 892
Blocks:
  Show dependency treegraph
 
Reported: 2004-11-05 09:04 UTC by Philipp Kohl
Modified: 2007-05-20 12:36 UTC (History)
1 user (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---


Attachments

Description Philipp Kohl 2004-11-05 09:04:38 UTC
I am using MediaWiki in an Intranet. The Web-Server is secured by a Single Sign
On, but the mechanism is simmilar to htaccess. I would wish for the wiki to read
the authentification data from the Web-server and use it for user
identification. In combination with LDAP that would essentially be a Single Sign on.
Comment 1 Nathan Hubbard 2005-02-01 03:35:52 UTC
I am also using MediaWiki in an Intranet.  We also have Single Sign On.  Any
integration with http basic auth is highly desired. I have done some mild
integration by pulling the REMOTE_USER variables and auto-populating some forms
but it is rudimentary.  We would like to be able to set up MediaWiki to trust
REMOTE_USER (or some other server environment variable that contains the
username) and not ask for passwords or keep account information in a seperate
userstore.  Integration with LDAP would be fine, but not required.  
Comment 2 T. Gries 2005-02-01 05:47:05 UTC
(In reply to comment #1)
> I am also using MediaWiki in an Intranet.  We also have Single Sign On.  Any
> integration with http basic auth is highly desired. I have done some mild
> integration by pulling the REMOTE_USER variables and auto-populating some forms
> but it is rudimentary.  We would like to be able to set up MediaWiki to trust
> REMOTE_USER (or some other server environment variable that contains the
> username) and not ask for passwords or keep account information in a seperate
> userstore.  Integration with LDAP would be fine, but not required.  

I have written this for my intranet. 

Please read http://bugzilla.wikipedia.org/show_bug.cgi?id=1360 "Auto-login /
Auto-account-creation by hostname for intranet MediaWikis".

The changes are only a very few lines in User.php. Please let me know, if you
are interested, then I will send you the patch.

For LDAP see Ryan Lane's patch http://meta.wikipedia.org/LDAP and
http://bugzilla.wikipedia.org/show_bug.cgi?id=814 .


Tom
Comment 3 Antoine "hashar" Musso (WMF) 2007-05-20 12:36:39 UTC
This is implemented by two extensions:

http://www.mediawiki.org/wiki/Extension:HttpAuth
http://www.mediawiki.org/wiki/Extension:AutomaticREMOTE_USER

They are part of the 'Authentication and Login' extensions:
http://www.mediawiki.org/wiki/Category:Authentication_and_Login

Marking bug as fixed.

Note You need to log in before you can comment on or make changes to this bug.


Navigation
Links