Mantis Bugtracker 

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0007874TestLinkUser Authentication Methodspublic2017-03-12 09:062017-03-12 09:11
Assigned Tofman 
PrioritynormalSeverityfeature requestReproducibilityN/A
PlatformOSOS Version
Product Version1.9.16 (2016 Q4) 
Fixed in Version 
Summary0007874: Authentication via WEBSERVER Variable to integrate SAML (Shibboleth Service Provider)
DescriptionThis feature has been sponsored.

Tested with following settings

$tlCfg->authentication['SSO_method'] = 'WEBSERVER_VAR';
$tlCfg->authentication['SSO_uid_field'] = 'REMOTE_USER';
$tlCfg->authentication['SSO_user_target_dbfield'] = 'email';

This means that TestLink will get contents from REMOTE_USER variable, and will try to match it's value against the field 'email' present on TestLink users table.

Logout Issues
You need also to provide a logout location for people using SSO (can not be the standard TestLink logout page).
This is configured using:


Skip SSO
if you add ?dissablesso, to the url used to access TestLink, the SSO mechanism will be skipped, and user will land on standard TestLink login page, and will need to provide his/her TestLink credentials in order to login

Tested only on Apache Webserver with Shibboleth SP, on a Bitnami VM.
TagsNo tags attached.
Database (MySQL,Postgres,etc)ANY
PHP Version
QA Team - Task Workflow StatusREADY FOR TESTING
Attached Files

- Relationships
child of 0007817closedfman Availables hot-fixes for 1.9.16 & How To get full fixed package from GitHub 

-  Notes
There are no notes attached to this issue.

- Issue History
Date Modified Username Field Change
2017-03-12 09:06 fman New Issue
2017-03-12 09:06 fman Status new => assigned
2017-03-12 09:06 fman Assigned To => fman
2017-03-12 09:11 fman Description Updated View Revisions
2017-03-12 09:11 fman Relationship added child of 0007817
2017-03-12 09:11 fman View Status private => public

Copyright © 2000 - 2019 MantisBT Team
Powered by Mantis Bugtracker