Edgewall Software

Ticket #507 (closed enhancement: fixed)

Opened 4 years ago

Last modified 2 years ago

Allow disabling IP address checking for authentication

Reported by: idnar <mithrandi@…> Owned by: cmlenz
Priority: high Milestone: 0.9
Component: general Version: 0.7
Severity: normal Keywords:
Cc:

Description

This would make it possible for users behind multi-homed proxy servers to auth properly; currently, if your IP address is variable during a session, you are essentially unable to login properly. Making this an option would allow the additional session security for those that want it, but also allow the added convenience and usability at the cost of a little session security.

Attachments

Change History

Changed 4 years ago by daniel

  • priority changed from normal to high
  • milestone set to 0.8

Not a bad idea. The session module is ip-independent as well (it just uses the cookie).

I propose adding a Authentication section to trac.ini, for stuff like this, sessions and similar.

Changed 4 years ago by daniel

  • milestone changed from 0.8 to 0.9

Changed 4 years ago by utopiste

  • owner changed from jonas to utopiste
  • status changed from new to assigned

Changed 4 years ago by cmlenz

  • owner changed from utopiste to cmlenz
  • status changed from assigned to new

Taking over.

Changed 4 years ago by cmlenz

  • status changed from new to assigned

Changed 4 years ago by cmlenz

  • status changed from assigned to closed
  • resolution set to fixed

Fixed in [1361].

Add/Change #507 (Allow disabling IP address checking for authentication)

Author



Change Properties
<Author field>
Action
as closed
Next status will be 'reopened'
 
Note: See TracTickets for help on using tickets.