[Freeipa-users] Suppressing the domain section after authentication
Natxo Asenjo
natxo.asenjo at gmail.com
Wed May 29 21:12:54 UTC 2013
On Wed, May 29, 2013 at 10:55 PM, William Muriithi <
william.muriithi at gmail.com> wrote:
> Hello
>
> I have set up gitolite3 and its working fine when I connect to it
> through ssh. I am using LDAP (FreeIPA) for authorization.
>
> When I connect through http/https, I am authenticated, but I believe
> authorization is not working. I have not been able to figure how to
> work around it..
>
> git clone http://william@git1.example.com/git/Design.git
>
> But after Apache authenticate me, it passes william at EXAMPLE.LOC not
> william to gitolite. When the name william at EXAMPLE.LOC is passed to
> the group searching script, it returns null and hence the error below
>
>
I could not find it in the docs, but according to
http://serverfault.com/questions/35363/apache-mod-auth-kerb-and-ldap-user-groupsyou
can do that with
KrbLocalUserMapping On
in your apache config.
I have not tested it ;-)
--
groet,
natxo
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20130529/ba43878d/attachment.htm>
More information about the Freeipa-users
mailing list