On Tue, Nov 8, 2011 at 6:36 PM, Mark Farver <mark.f(a)directi.com> wrote:
If passthru authentication is used.. what should be passed into the
XMLRPC login call?
cobbler/modules.conf
[authentication]
module = authn_passthru
remote = xmlrpclib.Server("http://username:password@127.0.0.1/cobbler_api
token = remote.login()
Calling login without a username/password gives a number of parameters
error, calling it with any username and password (even a valid
configfile one) fails. It only seems to work if we go back to
authn_configfile.
Ideally I'd like to use Kerberos/passthru for the webui, and password
authentication on the XMLAPI.
Don't pass the username/password in via the URL, just use the remote
function login(username,password) instead. I've got an authn_pam
module coming out soon, which will supplant the passthru module.
authn_passthru is for use with Apache/HTTP basic auth only. Since
we've moved to WSGI with form-based authentication, we no longer use
Apache's basic auth mechanism.