Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 0.11, 1.0
    • Fix Version/s: 0.11
    • Component/s: None
    • Labels:
      None

      Description

      Find attached a patch that add a proxy authentification handler to couch_httpd_auth.

      This handler allows creation of a userCtx objec from a user authenticated remotly. The client just pass specific headers to CouchDB and the handler create the userCtx. Headers name can be defined in local.ini. By thefault they are :

      • X-Auth-CouchDB-UserName : username, (x_auth_username in couch_httpd_auth section)
      • X-Auth-CouchDB-Roles : user roles, list of roles separated by a comma (x_auth_roles in couch_httpd_auth section)
      • X-Auth-CouchDB-Token : token to authenticate the authorization (x_auth_token in couch_httpd_auth section). This token is an hmac-sha1 created from secret key and username. The secret key should be the same in the client and couchdb node. secret key is the secret key in couch_httpd_auth section of ini. This token is optional if secret key isn't defined.

        Attachments

        1. proxyauth2.patch
          9 kB
          Benoit Chesneau
        2. proxyauth.diff
          8 kB
          Benoit Chesneau

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              benoitc Benoit Chesneau
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: