Uploaded image for project: 'ZABBIX BUGS AND ISSUES'
  1. ZABBIX BUGS AND ISSUES
  2. ZBX-8592

Frontend HTTP Authentication works only in case of "Basic Authentication" and PHP Safe_mode Off

XMLWordPrintable

    • Icon: Incident report Incident report
    • Resolution: Duplicate
    • Icon: Minor Minor
    • None
    • None
    • Frontend (F)
    • None

      When enabling HTTP Authentication on Zabbix Frontend, I noticed that the index.php will look for the $_SERVER['PHP_AUTH_USER'] in order to know if the user is logged in and which authorizations it should have.
      However, the PHP_AUTH_USER variable will not be availabled if:

      • PHP SafeMode is on
      • HTTP Digest Authentication

      I'm not a web developer and I don't know what are the implications, but using the $_SERVER['REMOTE_USER'] instead of $_SERVER['PHP_AUTH_USER'] will solve both the issues and probably some other.
      There are similar bug requests like: ZBX-3779, ZBX-6260, ZBX-5513

      Attached a simple tested patch

        1. CUser.php.patch
          1 kB
          Gabriele Armao
        2. index.php.patch
          0.5 kB
          Gabriele Armao

            Unassigned Unassigned
            gabriele.armao Gabriele Armao
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: