[users at bb.net] proxy and twisted session
Mike Alexeev
mike.42.alexeev at gmail.com
Mon Jan 9 17:52:12 UTC 2017
Hi all.
I'm trying to use nginx as proxy for buildbot 0.9 web interface and I have
question.
Nginx is configured to use basic auth
Buildbot configured to use remote auth with defaults.
Login works fine, logout works too.
(For logout I added redirection rule for /auth/logout url in nginx config
with wrong login and password
as supposed here
http://stackoverflow.com/questions/233507/how-to-log-out-user-from-web-site-using-basic-authentication
).
Logout works, user can sign in with another login.
But there is a problem because twisted session is the same.
And buildbot doesn't update user_info in session, if session has already
user_info dict.
(maybeAutoLogin method in RemoteUserAuth class, www/auth.py module).
So buildbot thinks that user is the same.
I added check if username in session and in request are equal and it works
(buildbot switches
users correctly).
Is it right way of solving this problem or maybe there is better solution?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.buildbot.net/pipermail/users/attachments/20170109/d3d57ffd/attachment.html>
More information about the users
mailing list