| 14 | |
| 15 | == Configuration == |
| 16 | |
| 17 | To make this work you will need to select one of the project to be the master authenticator, the other (slave) projects should be configured to pass the authenticate request onto the master project. This is to avoid one project to kill the auth_cookie if the login was made in another project. Unfortunately this means that login and logout can only be made in the master project. |
| 18 | |
| 19 | So for the slave projects you'll need to disable the normal way of authentication while enabling the sharedcookieauth: |
| 20 | {{{ |
| 21 | #!cfg |
| 22 | [components] |
| 23 | sharedcookieauth.* = enabled |
| 24 | trac.web.auth.LoginModule = disabled |
| 25 | |
| 26 | [trac] |
| 27 | auth_cookie_path = / |
| 28 | }}} |
| 29 | |
| 30 | And for the master project: |
| 31 | {{{ |
| 32 | #!cfg |
| 33 | [components] |
| 34 | sharedcookieauth.* = enabled |
| 35 | trac.web.auth.LoginModule = enabled |
| 36 | |
| 37 | [trac] |
| 38 | auth_cookie_path = / |
| 39 | }}} |
| 40 | |
| 41 | The sharedcookieauth should not need to be enabled in the master project, but it shouldn't harm either. Also be aware that the server name used must match or the browser will not share the auth_cookie between the projects |