94 | | 1. create a virtual directory under the base Trac site in IIS and name it "login". Set directory security to Digest Authentication, it works behing Nginx. 1. I had some trouble with the admin account: when I accessed the site directly by IP and logged in with my Windows credentials, the remote user was "domain\user", but through our router it became "DOMAIN\user", and the roles defined were picked up only for the one explicitly granted. Whichever appears on the site, add permissions for that username like this: "trac-admin $ENV permission add DOMAIN\user TRAC_ADMIN" |
| 94 | 1. To support authentication, create an empty directory in the base Trac virtual directory in IIS and name it "login". Set directory security to Digest Authentication (it works behind Nginx, whereas Integrated Windows Authentication does not). |
| 95 | 1. I had some trouble with the admin account: when I accessed the site directly by IP and logged in with my Windows credentials, the remote user was "domain\user", but through our router it became "DOMAIN\user" with capital letters, and the roles defined were picked up only for the one that I explicitly granted it for with trac-admin. Whichever appears on the site, add permissions for that username like this: {{trac-admin $ENV permission add DOMAIN\user TRAC_ADMIN}} |