Tags:
create new tag
view all tags

Question

I have implemented the following infrastructure on our corporate Intranet TWiki site:

An automated task generates a list of users (valid-twiki-users.txt), from Active Directory, who are authorized to access the TWiki site. In addition, all *Group.txt files are created and populated with the users from our Active Directory. Anyone who logs onto the corporate domain will have their logon credentials sent to Apache by the browser via mod_ntlm2. Apache will then populate the REMOTE_USER variable which is used by TWiki.

A custom login was created which does the following:

  • If REMOTE_USER is not set, it will deny access to the site and display an error page. If REMOTE_USER is set, it then searches that valid-twiki-users.txt file.
    • If the lan id is not found, it will deny access to the site and display an error page.
    • If the lan id is found, it then determines if the user is already registered. If they are, it then passes to the standard TWiki logon and they are logged in. If not, it passess key fields created in the valid-twiki-users.txt file and passes that to the TWiki registration process. The user is then automatically registered and logged in.

Essentially, I have disabled "Anonymous" access to the site.

HELPSince anonymous access is disabled, mailnotify no longer works. It appears as though it needs to login to the site. Is there a way around this? Also, what other functions require the ability to login to perform their functions?

Any help on this would be greatly appreciated. wink

Environment

TWiki version: TWikiRelease04x01x02
TWiki plugins: DefaultPlugin, EmptyPlugin, InterwikiPlugin
Server OS: Linux 2.4.21-4.el (i686-linux-thread-multi-64int-ld)
Web server: Apache 2.2.4 w/mod_perl2
Perl version: 5.8.7
Client OS: Windows XP Prof SP2
Web Browser: IE 6.0
Categories: Platform

-- JosephMecca - 04 Jun 2007

Answer

ALERT! If you answer a question - or someone answered one of your questions - please remember to edit the page and set the status to answered. The status selector is below the edit box.

I was able to get this working. For those of you who are interested: I had to set a flag to identify the script as being run by the command line. If so, the custom login will not execute and mailnotify will be able to run.

-- JosephMecca - 11 Jun 2007

Change status to:
Edit | Attach | Watch | Print version | History: r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r2 - 2007-06-11 - JosephMecca
 
  • Learn about TWiki  
  • Download TWiki
This site is powered by the TWiki collaboration platform Powered by Perl Hosted by OICcam.com Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.
Copyright © 1999-2026 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.