Changes between Version 73 and Version 74 of TracModWSGI

Timestamp:

Jan 7, 2016, 10:17:31 PM (8 years ago)

Author:

Robert.C.Jacobson@…

Comment:

Fix SiteMinder documentation.

TracModWSGI

@@ -293 +293 @@
 
 === Using CA !SiteMinder Authentication
-Setup CA !SiteMinder to protect your Trac login URL (e.g. `/trac/login`).  Also add a !LogOffUri parameter to the agent configuration (e.g. `/trac/logout`).  Then modify the trac.wsgi script generated using `trac-admin <env> deploy <dir>` to add the following lines, which extract the `HTTP_SM_USER` variable and set it to `REMOTE_USER`:
+Setup CA !SiteMinder to protect your Trac login URL (e.g. `/trac/login`).  Also, make sure the policy is set to include the HTTP_REMOTE_USER variable.  If your site allows it, you can set this in LocalConfig.conf:
+{{{
+RemoteUserVar="WHATEVER_IT_SHOULD_BE"
+SetRemoteUser="YES"
+}}}
+The specific variable is site-dependent.  Ask your site administrator.  If your site does not allow the use of LocalConfig.conf for security reasons, have your site administrator set the policy on the server to set REMOTE_USER.
+
+Also add a !LogOffUri parameter to the agent configuration (e.g. `/trac/logout`).
+
+Then modify the trac.wsgi script generated using `trac-admin <env> deploy <dir>` to add the following lines, which extract the `HTTP_REMOTE_USER` variable and set it to `REMOTE_USER`:
 
 {{{#!python
@@ -300 +309 @@
     # strip() is used to remove any spaces on the end of the string
     if 'HTTP_SM_USER' in environ: 
-        environ['REMOTE_USER'] = environ['HTTP_SM_USER'].strip()
+        environ['REMOTE_USER'] = environ['HTTP_REMOTE_USER'].strip()
     ...
 }}}