django - Admin redirects to /login although REMOTE_USER is provided -

-

i configured authentication using remote_user in django project, replacing default modelbackend. however, when call admin page still redirects login page. tested with:

curl -i -h 'remote_user: ruser1' http://localhost:8765/admin/myapp/mytable/ location: http://localhost:8765/admin/login/?next=/admin/myapp/mytable/

[edit: wrong - tested remote_user=ruser1 ./manage.py runserver]

the remote user has been added auth_user table.

my related config snippets are:

middleware_classes = (     ...     'django.contrib.auth.middleware.authenticationmiddleware',     'django.contrib.auth.middleware.remoteusermiddleware',      'django.contrib.auth.middleware.sessionauthenticationmiddleware',     ... ) authentication_backends = (     'django.contrib.auth.backends.remoteuserbackend', )

you can't set remote_user http header, otherwise users able spoof header , log in user wanted.

in production, remote_user environment variable set server, e.g. apache or nginx. if testing using development server, can set remote user with

remote_user=ruser1 ./manage.py runserver

any requests dev server processed ruser1 logged in user.


Comments

Post a Comment

Popular posts from this blog

yii2 - Yii 2 Running a Cron in the basic template -

-
i have seen instructions on running cron in advanced template, cant figure out how on basic template. have following controller in basic controllers folder. <?php namespace app\controllers; use yii\console\controller; /** * cron controller */ class croncontroller extends controller { public function actionindex() { echo "cron service runnning"; } public function actionmail($to) { echo "sending mail " . $to; } } i have navigated root of application , tried these comands yii cron php yii cron im getting unknown comand "cron" i know old question failed find actual answer this. if @ code yii exec file you'll notice requires /common/config/aliases.php file console/config/main.php. can naturally change these or copy on these advanced template. hope solves problem wanting same thing.
Read more

asp.net - 'System.Web.HttpContext' does not contain a definition for 'GetOwinContext' Mystery -

-
i realize question might seem trivial some, it's these types of things find myself fighting quite bit , want make sense of despite seeming losing battle in .net (for me anyway). so, if following: using system.web; ... applicationuser user = system.web.httpcontext.getowincontext().getusermanager<applicationusermanager>().findbyid(system.web.httpcontext.user.identity.getuserid()); that produces error in title , red getowincontext() , error cannot resolve symbol 'getowincontext()' however, if following (remove system.web in front of httpcontext ), works expected (or @ least no errors): using system.web; ... applicationuser user = httpcontext.getowincontext().getusermanager<applicationusermanager>().findbyid(system.web.httpcontext.user.identity.getuserid()); however, if (same line that's working using system.web commented out): //using system.web; ... applicationuser user = httpcontext.getowincontext().getusermana...
Read more

mercurial graft feature, can it copy? -

-
there new feature in mercurial 3, called 'graft' (graft local). job of moving change-set different branch. is there way "copy" change-set branch? i interested in in moving stuff qa branch production branch, still need code reside in qa. want copy. found , have tried few things, maybe it'll become clear more tinkering , reading... does have better way of 'cherry picking' change-sets move cross branch (or trunk)??? graft copies changesets, doesn't move them. hg graft (emphasis mine): this command uses mercurial's merge logic copy individual changes other branches without merging branches in history graph. known 'backporting' or 'cherry-picking' . default, graft copy user, date, , description source changesets.
Read more