https://bugs.contribs.org/show_bug.cgi?id=11043
John Crisp <[email protected]> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|IN_PROGRESS |RESOLVED
Resolution|--- |FIXED
--- Comment #15 from John Crisp <[email protected]> ---
OK, so this is problematic and we need a better solution
The first issue is that we use http authent via apache which authenticates with
pwauth. So far so good.
This then sets the following $_SERVER vars
PHP_AUTH_USER 'admin'
PHP_AUTH_PW 'mypassword'
These get passed to the config file and if it sees them it exchanges 'admin'
for the user 'root' and the password as set in the phpmyadmin config entry.
And presto! You login. Like magic.
Not so clever is that PHP_AUTH_USER stays in your browser until you restart
it.... it is persistent or stateless. This is not so good because we have no
logout mechanism.
Anyway, this seems to work
* Tue Dec 22 2020 John Crisp <[email protected]> 4.0.10.2-8.sme
- add php pool template, disable unit.ini, restore httpauth [SME: 11043]
- Fix version to PHP73 - any higher needs a newer version of phpMyAdmin
Tagged with: smeserver-phpmyadmin-4_0_10_2-8_el7_sme
/usr/bin/plague-client build smeserver-phpmyadmin
smeserver-phpmyadmin-4_0_10_2-8_el7_sme contribs10
Package smeserver-phpmyadmin enqueued. Job ID: 2763.
Think I got the tagging wrong. Blast. RPM should be OK.
To Test. You need a CLEAN browser. Between each test you MUST exit the browser
to clear the $SERVER Vars.
That will then force it to run the HTTP Auth and put up a pop box for login.
--
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug._______________________________________________
Mail for each SME Contribs bug report
To unsubscribe, e-mail [email protected]
Searchable archive at https://lists.contribs.org/mailman/public/contribteam/
