Using External authorization: authentication header is negotiate and not basic


(Priyansha2609) #1

Hi,

I want to use external HTTP service for authorization and the documentation says that ‘read only rest’ pases the authorization header to the authorization end point but I see in case the header is negotiate instead of basic, it doesn’t work at all.
Is there any work-around?


(Simone Scarduzio) #2

Hi @priyansha2609,
Yes external auth only works with Authorization header and it’s not made for browser based interactive login (it does not forward response headers).

What you probably are after is proxy_auth: where you have a reverse HTTP proxy set up to handle the authentication and forward the authenticated user to ROR.