Changes between Version 13 and Version 14 of SharedCookieAuthPlugin

Timestamp:

Nov 27, 2015, 3:41:26 PM (8 years ago)

Author:

Ryan J Ollos

Comment:

Adapt documentation to change in #12592.

SharedCookieAuthPlugin

@@ -4 +4 @@
 
 This plugin allows cookies to be shared among Trac environments that reside in the same directory, enabling Single-Sign-On to a collection of Trac sites.
-
-**Note**: This plugin inspired a native Single-Sign-On functionality in AccountManagerPlugin, which is available since acct_mgr-0.4 and even solves some of the shortcomings of this plugin. Most importantly login/logout works from any Trac environment sharing identical cookie path settings.
 
 == Bugs/Feature Requests
@@ -31 +29 @@
 == Configuration
 
-You will need to select one of the project to be the master, and thus responsible for authentication. The other (slave) projects should be configured to pass the authenticate request onto the master project. This is to avoid Trac expiring the `auth_cookie` when the login is made in another project. Unfortunately this means that login and logout can only be made in the master project.
-
-The slave project will have `LoginModule` disabled and `sharedcookieauth` enabled:
+Enable `sharedcookieauth` and set the `auth_cookie_path` in every environment that you wish to share authentication. This can be done using a [TracIni#GlobalConfiguration shared configuration].
 {{{#!ini
 [components]
 sharedcookieauth.* = enabled
-trac.web.auth.LoginModule = disabled
 
 [trac]
 auth_cookie_path = /
 }}}
-
-The master project will have both `LoginModule` and `sharedcookieauth` enabled:
-{{{#!ini
-[components]
-sharedcookieauth.* = enabled
-trac.web.auth.LoginModule = enabled
-
-[trac]
-auth_cookie_path = /
-}}}
-
-In practice `sharedcookieauth` does not need to be enabled in the master project, but neither should it cause any harm. Also be aware that the server name must match for each project or the browser will not share the `auth_cookie` among projects.
 
 == Recent Changes