Skip to content
/ mod_auth_sanitize_remote_user Public

Apache module that replaces problematic characters in (remote) user names.

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

man-hep-tier2/mod_auth_sanitize_remote_user

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
mod_auth_sanitize_remote_user.spec
mod_auth_sanitize_remote_user.spec
 
 

Repository files navigation

mod_auth_sanitize_remote_user

Apache module that replaces problematic characters in (remote) user names.

This module can be used to replace all occurrences of a set of characters in the user name of a remote user (REMOTE_USER) with a single defined character, e.g. all spaces with underscores. This can bu useful, for example, if you have user names that contain spaces (e.g. if the common name of a client certificate is used as user name), but the underlying web application does not allow user names that contain spaces.

Security Considerations

This module was written for a very specific use-case and can cause security issues when used in a general set-up. The main issue is that multiple remote users can potentially map to the same user as seen by the web application and therefore either cannot be mapped reliably or even gain access to something that they should not have access to.

About

Apache module that replaces problematic characters in (remote) user names.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases 1

Initial release. Latest
Nov 21, 2017

Packages

No packages published

Languages