Startseite Erkunden Hilfe
Anmelden
LBP
/
FressRSS
Mirror von https://github.com/FreshRSS/FreshRSS.git
4
0
Fork 0
Dateien Issues 0 Wiki
Quellcode durchsuchen

[fix] Login: HTTP Auth when internal redirects occur (#1772)

When Apache performs an internal redirect, it stores the username in the
REDIRECT_REMOTE_USER variable instead of REMOTE_USER, breaking HTTP
authentication. For more information, see this Stack Overflow
discussion:
<https://stackoverflow.com/questions/3050444/when-setting-environment-variables-in-apache-rewriterule-directives-what-causes>

This commit first tries REMOTE_USER, as before. If it is not set, it checks whether REDIRECT_REMOTE_USER is set.
Nico B vor 8 Jahren
Ursprung
b285a83c65
Commit
dfc638dd98
1 geänderte Dateien mit 9 neuen und 1 gelöschten Zeilen
Geteilte Ansicht Diff-Statistik anzeigen
  1. 9 1
      lib/lib_rss.php

+ 9 - 1
lib/lib_rss.php
Datei anzeigen 

@@ -364,7 +364,15 @@ function get_user_configuration($username) {
 
 
 
 function httpAuthUser() {
 
-	return isset($_SERVER['REMOTE_USER']) ? $_SERVER['REMOTE_USER'] : '';
 
+	if (isset($_SERVER['REMOTE_USER'])) {
 
+		return $_SERVER['REMOTE_USER'];
 
+	}
 
+
 
+	if (isset($_SERVER['REDIRECT_REMOTE_USER'])) {
 
+		return $_SERVER['REDIRECT_REMOTE_USER'];
 
+	}
 
+
 
+	return '';
 
 }
 
 
 function cryptAvailable() {