From 294728ac47df056121500ffe341c71a3de662ad5 Mon Sep 17 00:00:00 2001 From: Eric Lippmann Date: Tue, 29 Jul 2014 17:50:44 +0200 Subject: [PATCH] Revert "Autologin: Test logged session against remote user" This reverts commit 64954e99244f26cc6b6dccc7d60a253c105bd550. If the strip_username_regex is configured on the autologin backend and applies on a user's name, the authenticated user's username does never match the REMOTE_USER server variable. Thus the application will logout/login on every request which results in a redirect loop. refs #6462 --- library/Icinga/Authentication/Manager.php | 7 ------- 1 file changed, 7 deletions(-) diff --git a/library/Icinga/Authentication/Manager.php b/library/Icinga/Authentication/Manager.php index 7009d51ab..a0465d306 100644 --- a/library/Icinga/Authentication/Manager.php +++ b/library/Icinga/Authentication/Manager.php @@ -117,13 +117,6 @@ class Manager public function authenticateFromSession() { $this->user = Session::getSession()->get('user'); - - if ($this->user - && array_key_exists('REMOTE_USER', $_SERVER) - && $this->user->getUsername() !== $_SERVER['REMOTE_USER'] - ) { - $this->removeAuthorization(); - } } /**