tyler.durden/icingaweb2
1
0
Fork 0
mirror of https://github.com/Icinga/icingaweb2.git synced 2025-07-31 01:34:09 +02:00
Code Issues Packages Projects Releases Wiki Activity

Revert "Autologin: Test logged session against remote user"

Browse Source 
This reverts commit 64954e99244f26cc6b6dccc7d60a253c105bd550.

If the strip_username_regex is configured on the autologin backend and applies on a user's name,
the authenticated user's username does never match the REMOTE_USER server variable.
Thus the application will logout/login on every request which results in a redirect loop.

refs #6462
This commit is contained in:
Eric Lippmann 2014-07-29 17:50:44 +02:00
parent 0b1aee8a35
commit 294728ac47
1 changed files with 0 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
library/Icinga/Authentication/Manager.php
View File

@ -117,13 +117,6 @@ class Manager
public function authenticateFromSession() public function authenticateFromSession()
{ {
$this->user = Session::getSession()->get('user'); $this->user = Session::getSession()->get('user');
if ($this->user
&& array_key_exists('REMOTE_USER', $_SERVER)
&& $this->user->getUsername() !== $_SERVER['REMOTE_USER']
) {
$this->removeAuthorization();
}
} }
/** /**