-
Notifications
You must be signed in to change notification settings - Fork 300
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Incorrect documentation for LD_ENABLE_AUTH_PROXY? #372
Comments
Yeah, the assumption in the documentation is wrong. Either the documentation should be updated to state that new users are created automatically (which seems to be the default behavior of the Django authentication mechanism used here), or the application should actually prevent authentication for unknown users. I'm not really sure what is preferable. |
As someone looking to use this mechanism, I think the correct path is to create the user (and therefore update the documentation). The assumption would be whatever mechanism is creating the user is also managing user registration, so if you get to the REMOTE_USER stage, the user is valid. |
Sounds good, I was just checking if someone had more experience with this. A PR updating the documentation would be welcome 👍. |
In Options.md there is a note:
But it seems the Django RemoteUser backend actually does create a user when this header is included. Is this meant to indicate that user can't access the admin panel unless separately created?
The text was updated successfully, but these errors were encountered: