http authentication
-
I'd like to have the option for using basic http authentication rather than form-based authentication with Xen Orchestra (while still using LDAP for the actual backend authentication). This would allow easy single-sign-on through NetScaler by publishing it as an intranet resource without requiring Advanced/Enterprise licencing for SAML.
-
Ping @julien-f IDK if we need more info to have a specification
-
@sborrill What do you need exactly?
You want XO to automatically sign in the user when the page is visited when the
AuthorizationHTTP header contains the user credentials? -
@julien-f Yep, exactly. Respond with 401 header if username or password are wrong (or not present). Probably allow for the realm to be configured too (not important for NetScaler).
-
@sborrill I have a work-in-progress branch with a plugin for this: https://github.com/vatesfr/xen-orchestra/pull/4701
To test, you will need to checkout this branch, add a symlink to the
packages/xo-server-auth-httpplugin into the directoryxo-server/node_modulesand then to configure and unable the plugin from XO.This will make basic authentication available with the path
/signin/basic, note that you can make it the default authentication by overridingauthentication.defaultSignInPagein your configuration file.
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Register Login