[Mediawiki-l] Authentication
Soriano, Melissa
melissa.a.soriano at jpl.nasa.gov
Mon May 11 17:22:52 UTC 2009
Hi Mediawiki folks,
I am trying to set up authentication for our existing wiki against an external database. I currently do this successfully for my subversion database using Apache's mod_auth_pam module. For our wiki, I would like to use a similar approach. I tried to use http://www.mediawiki.org/wiki/Extension:HttpAuth. Does this make sense?
I am using
MediaWiki 1.14.0
PHP 5.2.6-1+lenny3 (apache2handler)
MySQL 5.0.51a-24+lenny1
I downloaded the HttpAuth module, added the following lines to LocalSettings.php:
session_start();
if ((!empty($_SERVER['PHP_AUTH_USER']) && !empty($_SERVER['REMOTE_USER'])) || $_COOKIE['fpwiki_en_UserID']) {
require_once("$IP/extensions/HttpAuthPlugin.php");
$wgAuth = new HttpAuthPlugin();
$wgHooks['UserLoadFromSession'][] = array($wgAuth,'autoAuthenticate');
}
I then added the following lines to http.conf:
<Location /w/Special:UserLogin>
AuthType "basic"
AuthName "wiki"
AuthPAM_Enabled on
AuthPAM_FallThrough Off
SSLRequireSSL
Require valid-user
</Location>
The result is that when users visit Special:UserLogin, they get a pop-up screen and must authenticate using PAM. They can then see the Special:UserLogin screen and must login again (which isn't compared to our external database). This isn't quite what I wanted. I am new to Apache and web administration. Does anyone have any advice?
Thank you.
Regards,
Melissa Soriano
More information about the MediaWiki-l
mailing list