On Sep 8, 2008, at 5:18 PM, Phil Pishioneri wrote: > On 9/8/08 3:12 PM, Andrew Mortensen wrote: >> We ran into an issue with the combination of Apache2, PHP and >> cosign, in which the REMOTE_USER wouldn't be logged in the Apache2 >> request logs. REMOTE_USER is available to the PHP scripts, but was >> getting stripped from the request before Apache logged it. > > We've seen a similar issue (some log entries -did- have the user), > though for us the fix was to add "AuthType Cosign" next to > "CosignProtected On".
I spoke to our web admins here, and we do have "CosignProtected On" and "AuthType Cosign" set together everywhere. We still have the problem. Any request log entry for a Cosign-protected php file (not an image or other resource referred to in the php file) lacks the user. The same issue affects mod_auth_kerb and mod_authnz_ldap. andrew ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Cosign-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/cosign-discuss
