allow authentication using SSL client certificates (closes #324)

author: Andrew Dolgov <[email protected]> 2011-03-27 16:40:23 +0400
committer: Andrew Dolgov <[email protected]> 2011-03-27 16:40:23 +0400
commit: f98252f27cb979f5285b65908b1b24a913b1af81 (patch)
tree: 29c1940c5e6728f532716db81105227dffbdee30 /config.php-dist
parent: 535d216a7dc7b686374aec65197090ccfb99020d (diff)
1 files changed, 7 insertions, 4 deletions
diff --git a/config.php-dist b/config.php-dist
index 7de32d512..c12e3ebee 100644
--- a/config.php-dist
+++ b/config.php-dist
@@ -128,10 +128,13 @@
 	// Limits the amount of feeds daemon (or a cronjob) updates on one run
 
 	define('ALLOW_REMOTE_USER_AUTH', false);
-   // Set to 'true' if you trust your web server's REMOTE_USER
-	// environment variable to validate that the user is logged in. This
-	// option can be used to integrate tt-rss with Apache's external
-	// authentication modules.
+	// Set to 'true' if you trust your web server's REMOTE_USER or 
+	// REDIRECT_SSL_CLIENT_S_DN_CN environment variables to validate 
+	// that the user is logged in. This option can be used to integrate 
+	// tt-rss with Apache's external authentication modules or SSL
+	// client certificate authentication.
+	// Please note that REMOTE_USER takes precedence over SSL certificate
+	// information.
 
 	define('AUTO_LOGIN', false);
 	// Set this to true if you use ALLOW_REMOTE_USER_AUTH and you want
author	Andrew Dolgov <[email protected]>	2011-03-27 16:40:23 +0400
committer	Andrew Dolgov <[email protected]>	2011-03-27 16:40:23 +0400
commit	f98252f27cb979f5285b65908b1b24a913b1af81 (patch)
tree	29c1940c5e6728f532716db81105227dffbdee30 /config.php-dist
parent	535d216a7dc7b686374aec65197090ccfb99020d (diff)