Question

I have everything configured on my twiki but getting a single signon to work. My problem is I can not get the REMOTE_USER set. I am on our company intranet and this environment is not set. A variable called uname does get set that has the user email address. I was going to use this to assign the REMOTE_USER. I installed the LoginNameAliasesPlugin to equate the email address to the TWikiUser but viewing the logs it relies on the REMOTE_USER setting. How can I get the REMOTE_USER set so TWiki will either read the email address and convert it to the wiki name?

Environment

-- AnthonyEgerstaffer - 07 Mar 2008

Answer

If you answer a question - or have a question you asked answered by someone - please remember to edit the page and set the status to answered. The status is in a drop-down list below the edit box.

I can set the REMOTE_USER to be my email and from the log can see the user getting set to my name. I have log in authentication set to apache with the .htpasswd file currently, so I change the log in to be third party app so it will let me log in. I can send any files that would be helpful in solving this problem. Thanks.

-- AnthonyEgerstaffer - 10 Mar 2008

ChangeAuthenticationVariable has probably the answer to your question. Strip the domain from the e-mail address, e.g. in the REMOTE_USER env variable, change jsmith@example.com to jsmith.

Make sure to set the {MapUserToWikiName} so that jsmith gets mapped to JohnSmith. When registering users, the Main.TWikiUsers topic gets udpated if you use the TWiki::Users::TWikiUserMapping module in the {UserMappingManager} configure setting. Example mapping in Main.TWikiUsers topic:

• JohnSmith - jsmith - 10 Mar 2008

Look also into the RequireRegistrationPlugin. That way SSO users need to register before they can edit content.

-- PeterThoeny - 10 Mar 2008

Is there a place to change the mapping for a user. Right now when I look I see: AnthonyEgerstaffer - AnthonyEgerstaffer - 10 Mar 2008. This may be due to me doing a BulkRegistration of the users. I will keep looking to see if I can find anything. Thanks for the help.

-- AnthonyEgerstaffer - 11 Mar 2008

-- AnthonyEgerstaffer - 11 Mar 2008

Edit your Main.TWikiUsers page to fix the mapping.

-- PeterThoeny - 11 Mar 2008

I have the mapping fixed that points shows AnthonyEgerstaffer anthony.j.egerstaffer in the TWikiUsers. But the login is still not working. I think the problem now is getting the REMOTE_USER assigned. Our server does not assign this and uses a _COOKIE{'uname'} to store email address. If I could get the REMOTE_USER to store this information from uname or have TWiki recognize uname as authorized user this could solve my issue.

-- AnthonyEgerstaffer - 14 Mar 2008

Please study ChangeAuthenticationVariable. Add some code to bin/LocalLib.cfg to assign the cookie value to $ENV{REMOTE_USER}, and remove the @domain part from it.

-- PeterThoeny - 14 Mar 2008

Thank you for the assistance

-- AnthonyEgerstaffer - 09 Apr 2008