Compatible with DokuWiki
- 2022-07-31 "Igor" unknown
- 2020-07-29 "Hogfather" yes
- 2018-04-22 "Greebo" yes
- 2017-02-19 "Frusterick Manners" yes
Similar to authclientcert
This plugin allows integration with the web server's built-in authentication system via an environment variable which is set through
- and so on.
Default variable name is
It uses the default plain text file
conf/users.auth.php to store user information.
- Enable an authentication system which sets (domain and) username in an environment variable on your webserver (
_SERVER[…]) (and disable anonymous authentication) on your web server.
- Determine the variable name your authentication system uses:
- Default is
- If your authentication system uses another variable name notice this name.
- Determine your username:
phpinfo.phpin your web browser and search for the value in
…is the variable name of your authentication system.
- Add this value as new user ID to your user list if it is missing and add them groups
- Remove file
- In your DokuWiki login as superuser, click Admin, choose Configuration Settings, and configure these settings:
- Disable action
- If enabled, disable option
- If your authentication system doesn't use variable name
REMOTE_USERset the name (see also topic 1.2) in
- Save this configuration.
- Remove DokuWiki cookie from your browser or close and restart your browser.
- Reload your DokuWiki installation. Your login should be automatically detected.
- Now, you can re-enable option
subscribersagain (see above).
Copy the configuration settings to the
conf/local.protected.php file to protect the settings against changes via Config Manager.
Administration of users and its groups is done in the User Manager which is fully supported by this plugin.
AuthRemoteUser uses the same storage backend like authplain that is
conf/users.auth.php. Users which are added after switching to AuthRemoteUser, won't contain an encrypted password.
That is: You can switch back to authplain (and enable
profile setting) whenever you want, and all your users which were already added before are still able to login using their (hopefully yet known) password. All other users can use the forget my password link.
Empty lines, and everything after a
# character are ignored. Each line contains a colon separated array of five fields:
This has to be a valid pagename.
Encrypted password if user id was added using authplain, otherwise empty.
Real name of the user.
Email address of user.
Comma separated list of groups a user is member of. The group names must follow the rules of valid pagenames.
conf/users.auth.php is a plain text file, it can be edited with any text editor.