tyler.durden
/
icingaweb2
mirror of https://github.com/Icinga/icingaweb2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Revert "Autologin: Test logged session against remote user" 

This reverts commit 64954e9924.

If the strip_username_regex is configured on the autologin backend and applies on a user's name,
the authenticated user's username does never match the REMOTE_USER server variable.
Thus the application will logout/login on every request which results in a redirect loop.

refs #6462
This commit is contained in:
Eric Lippmann 2014-07-29 17:50:44 +02:00
parent 0b1aee8a35
commit 294728ac47
1 changed files with 0 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
library/Icinga/Authentication/Manager.php
View File

@ -117,13 +117,6 @@ class Manager
public function authenticateFromSession()
{
$this->user = Session::getSession()->get('user');
if ($this->user
&& array_key_exists('REMOTE_USER', $_SERVER)
&& $this->user->getUsername() !== $_SERVER['REMOTE_USER']
) {
$this->removeAuthorization();
}
}
/**