rpms / ipa

Clone
Source Code
GIT

Blame SOURCES/0078-WebUI-cert-login-Configure-name-of-parameter-used-to.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8-beta-stream-DL1 c8-beta-stream-client c8-stream-DL1 c8-stream-client c8s-stream-DL1 c8s-stream-client c9 c9-beta
  1.   483b06d68cbb3facb2f1fcff4d857d3e3233a2e0
  2.   SOURCES
  3.   0078-WebUI-cert-login-Configure-name-of-parameter-used-to.patch
Blob History Raw
483b06 
From 5ac1c55462297d4458d07a6ff9941170056216ef Mon Sep 17 00:00:00 2001
483b06 
From: David Kupka <dkupka@redhat.com>
483b06 
Date: Mon, 10 Apr 2017 13:11:13 +0200
483b06 
Subject: [PATCH] WebUI: cert login: Configure name of parameter used to pass
483b06 
 username
483b06
483b06 
Directive LookupUserByCertificateParamName tells mod_lookup_identity module the
483b06 
name of GET parameter that is used to provide username in case certificate is
483b06 
mapped to multiple user accounts.
483b06 
Without this directive login with certificate that's mapped to multiple users
483b06 
doesn't work.
483b06
483b06 
https://pagure.io/freeipa/issue/6860
483b06
483b06 
Reviewed-By: Florence Blanc-Renaud <frenaud@redhat.com>
483b06 
---
483b06 
 install/conf/ipa.conf | 1 +
483b06 
 1 file changed, 1 insertion(+)
483b06
483b06 
diff --git a/install/conf/ipa.conf b/install/conf/ipa.conf
483b06 
index e1f1a581b4e8a91b899bcf165ca81f266fa9e516..75c122e6c94b941c278d724add84315753082531 100644
483b06 
--- a/install/conf/ipa.conf
483b06 
+++ b/install/conf/ipa.conf
483b06 
@@ -117,6 +117,7 @@ Alias /ipa/session/cookie "/usr/share/ipa/gssapi.login"
483b06 
   NSSVerifyClient require
483b06 
   NSSUserName SSL_CLIENT_CERT
483b06 
   LookupUserByCertificate On
483b06 
+  LookupUserByCertificateParamName "username"
483b06 
   WSGIProcessGroup ipa
483b06 
   WSGIApplicationGroup ipa
483b06 
   GssapiImpersonate On
483b06 
--
483b06 
2.9.3
483b06

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation