Question

Hi, The /twiki/bin/edit script is under LDAP auth. LDAP auth appears to be working fine. After the LDAP login routine, TWiki appears to correctly map to my WikiName. I can see this just under the edit textarea/box where it allows you to copy and paste your signature. So everything seems healthy to that point.

However after saving the edits, the page is still stamped with the TWikiGuest user name instead of the correct WikiName... very frustrating.

What am I missing?

Thanks for your time.

Environment

-- MichaelMonaghan - 11 Dec 2005

Answer

If you answer a question - or someone answered one of your questions - please remember to edit the page and set the status to answered. The status selector is below the edit box.

The view script is not authenticated, hence everyone is a TWikiGuest. See TWikiUserAuthentication

-- PeterThoeny - 12 Dec 2005

Thanks Peter but but maybe I didn't describe the issue properly.

For example, on this very page - LdapAuthPagesNotStampedWithWikiName in this particular TWiki web, whether I'm authenticated or not I can see the revision stamp: "r1.2 - 12 Dec 2005 - 01:06 - PeterThoeny" [until I save this comment obviously].

On any system, once edit/save etc require authentication, shouldn't a simple 'view' of the topic show the username of the person who last edited? - whether or not the view script itself is under auth.

Thanks, ~mm

-- MichaelMonaghan - 12 Dec 2005

Oh, that is a different case. Is the save script authenticated the same way as edit?

-- PeterThoeny - 12 Dec 2005

Hi Peter, Yep I have both the edit & save scripts under LDAP auth:

acl "path=/opt/SUNWwbsvr/docs/twiki/bin/save";
authenticate (user,group) {
        database = "default";
        method = "basic";
        prompt = "";
};
deny (all)
 (user = "anyone");

allow (all)
 (user = "ab123456");

Same thing for the edit script. I feel there's something simple I'm missing here... It definitely knows who I am, just the stamp isn't reflecting that... I appreciate your time on this.

~mm

-- MichaelMonaghan - 12 Dec 2005

Sorry, I do not know what is wrong. It should work if the save script is authenticated. Verify this by adding TWiki::Func::writeDebug( "REMOTE_USER: $ENV{'REMOTE_USER'}" ); to the beginning of the save script, and watch the output in data/debug.txt.

-- PeterThoeny - 13 Dec 2005

It's now working in my production environment but it's still not working on my test server - but the environments are not identical. I hadn't got auth on the save script on my production server - figured there was no point since it didn't work in my test environ. But alas it did work. Not sure why, but my problem is solved for the moment at least.

Thanks for your time,

~mm

-- MichaelMonaghan - 13 Dec 2005