External authentication without double-login in tt-rss

JoWiSoftware.de

Thursday, December 30. 2010

Posted by Jochen Wierum in English, Mobil, PHP

External authentication without double-login in tt-rss

I already wrote about tiny tiny RSS (tt-rss) in this article.

So far, the login-mechanism of tt-rss was used. However, tt-rss also allows to use authentication mechanisms of an webserver, which allowes the usage of htAccess and htUser-Files.

To activate external authentication, I first edited config.php and changed ALLOW_REMOTE_USER_AUTH to true (you find it around line 130):

  1. define('ALLOW_REMOTE_USER_AUTH', true);

After that, I hat to tell Apache to protect the directory:

  1. <Directory /var/www/tt-rss>
  2.         AuthName "RSS Feedreader"
  3.         AuthType Basic
  4.         Require valid-user
  5.         AuthUserFile /my/user/file
  6. </Directory>

After reloading Apache I was a bit surprised. I got an authentication-dialog, entered username and password, and got the tt-rss login screen. The funny thing: the username I entered here was ignored. But I had to enter something.

I tried to find out why this happened. I finally found a little hack which prevented the login screen:

In functions.php, I edited line 1959. I replaced

  1. if ($login_action == "do_login") {

through

  1. if (defined('ALLOW_REMOTE_USER_AUTH') && ALLOW_REMOTE_USER_AUTH
  2.         && $_SERVER["REMOTE_USER"] && $login != "admin") {
  3.     authenticate_user($link, '', '');
  4.     $_SESSION["ref_schema_version"] = get_schema_version($link, true);
  5. } elseif ($login_action == "do_login") {

And finally it worked. As far as I can tell, this hack has no side-effects. It even works with the mobile view. But I don't want to be responsible for any problem ;-)

Have fun!


Trackbacks
Trackback specific URI for this entry

No Trackbacks

Comments
Display comments as (Linear | Threaded)

No comments

The author does not allow comments to this entry

Frontpage - Top level

Quicksearch

Links in diesem Artikel

Static Pages