Josef Meile wrote:
> If your Zope auth solution can put a header in the http response,
then > you can use a custom apache logging directive to put this in your
> Apache log in place of what it thinks the username is.
I put this on the "log" method of the medusa/http_server.py file:
self.response.setHeader('remote_user',name)
As you've found out, this is the wrong level to do this ;-)
and set my apache access log like this:
CustomLog /home/apache/httpd/logs/access_log combined
The combined log is defined as follows:
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\"
\"%{User-Agent}i\"" combined
There you see the %l and %u directives, which are the "Remote logname"
and the "Remote user".
Yeah, these aren't the ones you want to be using ;-)
But apache still doesn't get the zope authenticated user. So, Chris,
do you remember what header you set, where, and which method you used?
Ok, Answering to this question. I guess I had to set the header inside the
authenticate method of the BasicUserFolder class. Here is what I did:
def authenticate(self, name, password, request):
emergency = self._emergency_user
user = None
if name is None:
pass
else:
if emergency and name==emergency.getUserName():
user = emergency
else:
user = self.getUser(name)
if user is not None and user.authenticate(password, request):
pass
else:
user = None
logUser = 'Anonymous'
if (user != None):
logUser = user.getUserName()
request.response.setHeader('remote-user',logUser)
Well, I wouldn't use that header, try using X-MyUserName instead, and
then in the apache config you'd use %{X-MyUserName}o
hth,
Chris
--
Simplistix - Content Management, Zope & Python Consulting
- http://www.simplistix.co.uk
_______________________________________________
Zope maillist - Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://mail.zope.org/mailman/listinfo/zope-announce
http://mail.zope.org/mailman/listinfo/zope-dev )
