-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 has anyone had any success with RT 3.8.8+ and mod_auth_tkt?
something changed between 3.8.4 and 3.8.8 that fails to allow the auth_tkt cookie to be passed through and I can't quite figure out what it is. RT::ExternalAuth:: assumes you already have the cookie, but i'm guessing some security fix somewhere dis-allows a cross-site cookie from being planted when you wrap: <Location /rt> TKT... SetHandler perl-script PerlHandler RT::Mason </Location> It works if the cookie is already set, but not if this is the handler that's setting the cookie (tested and works a-OK with the default apache handler). I've been ripping through the interface handler code and i'm sure i'm missing something stupid here, just getting a bit blurry. any insight greatly appreciated. - -- Wes claimid.com/wesyoung [email protected] -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.16 (Darwin) iEYEARECAAYFAk6KGqoACgkQKezpZd226UYaXACfXpI/L6be2fK4ByvufCa7SJT5 7YAAnRUwB+4t4p5VTntsjgYk/I58pL/1 =Pb3C -----END PGP SIGNATURE----- -------- RT Training Sessions (http://bestpractical.com/services/training.html) * San Francisco, CA, USA October 18 & 19, 2011 * Washington DC, USA October 31 & November 1, 2011 * Melbourne VIC, Australia November 28 & 29, 2011 * Barcelona, Spain November 28 & 29, 2011
