Opened 13 years ago
Closed 13 years ago
#10363 closed defect (wontfix)
authentication error message points to "/login" even if trac.web.auth is disabled
| Reported by: | Owned by: | ||
|---|---|---|---|
| Priority: | normal | Milestone: | |
| Component: | web frontend | Version: | 0.12-stable |
| Severity: | minor | Keywords: | login trac.web.auth messages |
| Cc: | Branch: | ||
| Release Notes: | |||
| API Changes: | |||
| Internal Changes: | |||
Description
I have a Trac 0.12 with trac.web.auth disabled. (I use OpenIDAuth instead.) Users often click on direct links they receive in ticket notifications, such as "http://trac.foo.com/ticket/6#comment:2". If they are not logged in, they get an error message and a reminder to log in
<div id="notice" class="system-message">
You are currently not logged in. You may want to <a href="/login">do so</a> now.
</div>
Clearly, the link to /login will not work as web.auth is disabled. When they click on it, they either get an error message ("No handler matched request to /login") or an actual http authentication window, which is clearly not intended behavior.
I think the message should verify that /login will be handled before offering it up. (Better yet, it could link to the alternative login method that is enabled, say, /openidlogin.)
Attachments (0)
Change History (2)
comment:1 by , 13 years ago
comment:2 by , 13 years ago
| Resolution: | → wontfix |
|---|---|
| Status: | new → closed |
Fair enough, I will then set up a redirect. Closing as wontfix.
/loginis the canonical path for authentication. It's hardcoded in several locations, so it should be present on any Trac instance that requires authentication. You could configure the web server to redirect from/loginto/openidlogin.There's currently no interface for Trac to find out on what path authentication is performed, so adapting the message would be difficult. It is useful for most people, though, so I would rather keep the link.
Suggesting "wontfix".