Table of Contents

authRemoteUser Plugin

Compatible with DokuWiki

  • 2017-02-19 "Frusterick Manners" yes
  • 2016-06-26 "Elenor Of Tsort" yes
  • 2015-08-10 "Detritus" yes
  • 2014-09-29 "Hrun" unknown

plugin Provides authentication via web server's REMOTE_USER environment variable which is set through authentication systems like HTTP-Auth, LDAP, CAS, Cosign, NTLM, PAM, WebAuth, SSPI, and so on

Last updated on
2016-03-29
Provides
Auth
Repository
Source

Description

This plugin allows integration with the web server's built-in authentication system via the REMOTE_USER environment variable which is set through HTTP-Auth, LDAP, CAS, Cosign, NTLM, PAM, WebAuth, SSPI and so on. It uses the default plain text file conf/users.auth.php to store user information.

Installation

  1. Enable an authentication system which sets REMOTE_USER (and disable anonymous authentication on your web server).
  2. Install the plugin using the Plugin Manager and the download URL above, which points to latest version of the plugin. Refer to Plugins on how to install plugins manually.

Usage

  1. Determine your REMOTE_USER name:
    • Save phpinfo.php on your web server
      phpinfo.php
      <?PHP
      	phpinfo();
      ?>
    • Open phpinfo.php in your web browser and search for the value in _SERVER[“REMOTE_USER”]
    • Add this value as new user ID to your user list if it is missing and add them groups admin and user. Don't be surprised: The user ID is converted to a valid pagename.
  2. In your DokuWiki login as superuser, click “Admin”, choose “Configuration Settings”, and configure these settings
    1. Disable action profile.
    2. If enabled, disable option subscribers temporarily.
    3. Enable authtype “authRemoteUser”.
    4. Disable rememberme.
    5. Save this configuration
  3. Remove DokuWiki cookie from your browser or close and restart your browser.
  4. Reload your DokuWiki installation. Your login should be automatically detected.
  5. Now, you can re-enable option subscribers again (see above).

Copy the configuration settings to the conf/local.protected.php file to protect the settings against changes via Config Manager.

Administration of users and its groups is done in the User manager, which is fully supported by this plugin.

Storage

authRemoteUser uses the same storage backend like authplain that is conf/users.auth.php. Users which are added after switching to authRemoteUser, won't contain an encrypted password.

That is: You can switch back to authplain (and enable profile setting) whenever you want, and all your users which were already added before are still able to login using their (hopefully yet known) password. All other users can use the “forget my password” link.

File Format

Empty lines, and everything after a # character are ignored. Each line contains a colon separated array of 5 fields loginname:password:Real Name:e-mail:groups which are:

Editing

Since conf/users.auth.php is a plain text file, it can be edited with any text editor.

Development

Change Log

Known Bugs and Issues

ToDo/Wish List

FAQ

Discussion