]>
Commit | Line | Data |
---|---|---|
dc848f2c ER |
1 | Maybe for security have USE_HTTP_AUTH = ['user1', 'user2'] |
2 | ||
87a0480e ER |
3 | NOTE: you won't be able to authorize with list password anymore. |
4 | ||
dc848f2c ER |
5 | --- mailman-2.1.11/Mailman/Defaults.py.in~ 2009-06-08 16:45:29.000000000 +0300 |
6 | +++ mailman-2.1.11/Mailman/Defaults.py.in 2009-06-08 16:45:31.967055253 +0300 | |
7 | @@ -1319,6 +1319,10 @@ | |
8 | AuthListModerator = 4 # List Moderator (can only handle held requests) | |
9 | AuthSiteAdmin = 5 # Site Administrator (total control over everything) | |
10 | ||
11 | +# If value is True, site administrator is trusted from REMOTE_USER CGI variable | |
12 | +# Use this to if you want to use password authentication for site admin. | |
13 | +USE_HTTP_AUTH = False | |
14 | + | |
15 | # Useful directories | |
16 | LIST_DATA_DIR = os.path.join(VAR_PREFIX, 'lists') | |
17 | LOG_DIR = '@LOG_DIR@' | |
18 | --- mailman-2.1.11/Mailman/Utils.py~ 2009-06-08 16:45:22.000000000 +0300 | |
19 | +++ mailman-2.1.11/Mailman/Utils.py 2009-06-08 16:45:25.094129761 +0300 | |
20 | @@ -411,6 +411,11 @@ | |
21 | ||
22 | ||
23 | def check_global_password(response, siteadmin=True): | |
24 | + if mm_cfg.USE_HTTP_AUTH: | |
5b9abe43 | 25 | + if os.environ.get('AUTH_TYPE') != None and os.environ.get('REMOTE_USER') != None: |
dc848f2c ER |
26 | + return True |
27 | + # Fallback to global password auth | |
28 | + | |
29 | challenge = get_global_password(siteadmin) | |
30 | if challenge is None: | |
31 | return None |