-<
<
-<
<
+TWiki does not authenticate users internally, it depends on the REMOTE_USER environment variable. This variable is set when you enable Basic Authentication (.htaccess) or SSL "secure server" authentication (https protocol).
->
>
+TWiki does not authenticate users internally, it depends on the REMOTE_USER environment variable. This variable is set when you enable Basic Authentication (.htaccess) or SSL "secure server" authentication (https protocol).
-<
<
+No special installation steps need to be performed if the server is already authenticated. If not, you have three standard options for controlling user access:
->
>
+No special installation steps are required if the server is already authenticated. If it isn't, you have three standard options for controlling user access:
-<
<
->
>
-<
<
->
>

Line: 1 to 1

Deleted:

<
<

Line: 12 to 10

Changed:

<
<

TWiki does not authenticate users internally, it depends on the REMOTE_USER environment variable. This variable is set when you enable Basic Authentication (.htaccess) or SSL "secure server" authentication (https protocol).

>
>

Line: 18 to 16

Changed:

<
<

No special installation steps need to be performed if the server is already authenticated. If not, you have three standard options for controlling user access:

>
>

No special installation steps are required if the server is already authenticated. If it isn't, you have three standard options for controlling user access:

Line: 64 to 62

Changed:

<
<

>
>

Line: 70 to 68

Changed:

<
<

>
>

Line: 1 21 to 1 21
Changed:
< <	Use Basic Authentication (HTAccess) to control access by protecting key scripts: `attach`, `edit=`, `installpasswd`, `password`, `preview`, `rename`, `save`, `upload`, `view`, `viewfile` using .htaccess files. The TWiki Installation Guide has step-by-step instructions.
> >	Use Basic Authentication (.htaccess) to control access by protecting key scripts: `attach`, `edit=`, `installpasswd`, `preview`, `rename`, `save`, `upload` using the .htaccess file. The TWikiInstallationGuide has step-by-step instructions.

Line: 1 21 to 1 21

Changed:

<
<

Use Basic Authentication (HTAccess) to control access by protecting key scripts: attach, edit=, installpasswd, password, preview, rename, save, upload, view, viewfile using .htaccess files. The TWiki Installation Guide has step-by-step instructions.

>
>

Use Basic Authentication (.htaccess) to control access by protecting key scripts: attach, edit=, installpasswd, preview, rename, save, upload using the .htaccess file. The TWikiInstallationGuide has step-by-step instructions.

Line: 1 to 1
Added:
> >

Line: 1 to 1

Added:

>
>

-<
<
+  TWiki User Authentication
->
>
+  TWiki User Authentication
-<
<
+  Overview
->
>
+  Overview
-<
<
+  Authentication Options
->
>
+  Authentication Options
-<
<
+  Partial Authentication
->
>
+  Partial Authentication
-<
<
+  TWiki Username vs. Login Username
->
>
+  TWiki Username vs. Login Username
-<
<
+  Changing Passwords
->
>
+  Changing Passwords
-<
<
+-- PeterThoeny - 16 Mar 2001

Line: 73 to 72

Deleted:

<
<

-- PeterThoeny - 16 Mar 2001

-<
<
+No special installation steps need to be performed if the server is already authenticated. If not, you have three remaining options to controlling user access:

 Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public - anyone can browse and edit freely, in classic Wiki mode.


 Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. The TWiki Installation Guide has step-by-step instructions.


 Use SSL to authenticate and secure the whole server.
->
>
+No special installation steps need to be performed if the server is already authenticated. If not, you have three standard options for controlling user access:

 Forget about authentication to make your site completely public - anyone can browse and edit freely, in classic Wiki mode. All visitors are assigned the TWikiGuest^? default identity, so you can't track individual user activity. 


 Use SSL (Secure Sockets Layer; HTTPS) to authenticate and secure the whole server. 


 Use Basic Authentication (HTAccess) to control access by protecting key scripts: attach, edit=, installpasswd, password, preview, rename, save, upload, view, viewfile using .htaccess files. The TWiki Installation Guide has step-by-step instructions.
-<
<
+  Tracking by IP Address
->
>
+  Partial Authentication
-<
<
+The REMOTE_USER environment variable is only set for the scripts that are under authentication. If, for example, the edit, save and preview scripts are authenticated, but not view, you would get your WikiName in preview for the %WIKIUSERNAME% variable, but view will show TWikiGuest instead of your WikiName.
->
>
+Tracking by IP address is an experimental feature, enabled in lib/TWiki.cfg. It lets you combine open access to some functions, with authentication on others, with full user activity tracking:
-<
<
+There is a way to tell TWiki to remember the user for the scripts that are not authenticated, ex: in case the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address/username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non-authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki persistently stores the IP address/username pairs in the file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail if the IP address changes due to dynamically assigned IP addresses or proxy servers.
->
>
+ Normally, the REMOTE_USER environment variable is set for the scripts that are under authentication. If, for example, the edit, save and preview scripts are authenticated, but not view, you would get your WikiName in preview for the %WIKIUSERNAME% variable, but view will show TWikiGuest instead of your WikiName.
-<
<
+Authentication Test: You are TWikiGuest^? (%WIKIUSERNAME%)
->
>
+ TWiki can be configured to remember the IP address/username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non-authenticated scripts, like view, will show the correct username instead of TWikiGuest^?.




 Enable this feature by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki then persistently stores the IP address/username pairs in the file, $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default.




 NOTE: This approach can fail if the IP address changes due to dynamically assigned IP addresses or proxy servers. 



Quick Authentication Test - Use the %WIKIUSERNAME% variable to return your current identity:


 You are TWikiGuest^?
-<
<
+NOTE: *To correctly enter a WikiName* - your own or someone else's - be sure to include the Main web name in front of the Wiki username, followed by a period, and no spaces. Ex:
->
>
+NOTE: To correctly enter a WikiName - your own or someone else's - be sure to include the Main web name in front of the Wiki username, followed by a period, and no spaces. Ex:
-<
<
+Change and reset passwords using forms on regular pages. Use topic-level TWikiAccessControl to restrict use as required.
->
>
+Change and reset passwords using forms on regular pages. Use TWikiAccessControl to restrict use as required.
-<
<
+ The ChangePassword form, TWiki/ChangePassword:
->
>
+ The ChangePassword form ( TWiki/ChangePassword ):
-<
<
+ The ResetPassword form TWiki/ResetPassword:
->
>
+ The ResetPassword form ( TWiki/ResetPassword ):

Line: 1 16 to 1 16

Changed:

<
<

No special installation steps need to be performed if the server is already authenticated. If not, you have three remaining options to controlling user access:

Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public - anyone can browse and edit freely, in classic Wiki mode.
Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. The TWiki Installation Guide has step-by-step instructions.
Use SSL to authenticate and secure the whole server.

>
>

No special installation steps need to be performed if the server is already authenticated. If not, you have three standard options for controlling user access:

Forget about authentication to make your site completely public - anyone can browse and edit freely, in classic Wiki mode. All visitors are assigned the TWikiGuest^? default identity, so you can't track individual user activity.
Use SSL (Secure Sockets Layer; HTTPS) to authenticate and secure the whole server.
Use Basic Authentication (HTAccess) to control access by protecting key scripts: attach, edit=, installpasswd, password, preview, rename, save, upload, view, viewfile using .htaccess files. The TWiki Installation Guide has step-by-step instructions.

Line: 21 to 21

Changed:

<
<

Tracking by IP Address

>
>

Partial Authentication

Line: 23 to 23

Changed:

<
<

The REMOTE_USER environment variable is only set for the scripts that are under authentication. If, for example, the edit, save and preview scripts are authenticated, but not view, you would get your WikiName in preview for the %WIKIUSERNAME% variable, but view will show TWikiGuest instead of your WikiName.

>
>

Tracking by IP address is an experimental feature, enabled in lib/TWiki.cfg. It lets you combine open access to some functions, with authentication on others, with full user activity tracking:

Line: 25 to 25

Changed:

<
<

There is a way to tell TWiki to remember the user for the scripts that are not authenticated, ex: in case the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address/username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non-authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki persistently stores the IP address/username pairs in the file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail if the IP address changes due to dynamically assigned IP addresses or proxy servers.

>
>

Normally, the REMOTE_USER environment variable is set for the scripts that are under authentication. If, for example, the edit, save and preview scripts are authenticated, but not view, you would get your WikiName in preview for the %WIKIUSERNAME% variable, but view will show TWikiGuest instead of your WikiName.

Line: 27 to 27

Changed:

<
<

Authentication Test: You are TWikiGuest^? (%WIKIUSERNAME%)

>
>

TWiki can be configured to remember the IP address/username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non-authenticated scripts, like view, will show the correct username instead of TWikiGuest^?.

Enable this feature by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki then persistently stores the IP address/username pairs in the file, $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default.

NOTE: This approach can fail if the IP address changes due to dynamically assigned IP addresses or proxy servers.

Quick Authentication Test - Use the %WIKIUSERNAME% variable to return your current identity:

You are TWikiGuest^?

Line: 41 to 50

Changed:

<
<

NOTE: *To correctly enter a WikiName* - your own or someone else's - be sure to include the Main web name in front of the Wiki username, followed by a period, and no spaces. Ex:

>
>

NOTE: To correctly enter a WikiName - your own or someone else's - be sure to include the Main web name in front of the Wiki username, followed by a period, and no spaces. Ex:

Line: 49 to 58

Changed:

<
<

Change and reset passwords using forms on regular pages. Use topic-level TWikiAccessControl to restrict use as required.

>
>

Change and reset passwords using forms on regular pages. Use TWikiAccessControl to restrict use as required.

Line: 51 to 60

Changed:

<
<

The ChangePassword form, TWiki/ChangePassword:

>
>

The ChangePassword form ( TWiki/ChangePassword ):

Line: 57 to 66

Changed:

<
<

The ResetPassword form TWiki/ResetPassword:

>
>

The ResetPassword form ( TWiki/ResetPassword ):

-<
<
+Controlling TWiki site access and logging authorized user activity
->
>
+TWiki site access control and user activity tracking
-<
<
+ Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public - anyone can browse and edit freely, in classic Wiki mode.


 Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. The TWiki Installation Guide has step-by-step instructions.


 Use SSL to authenticate and secure the whole server.
->
>
+ Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public - anyone can browse and edit freely, in classic Wiki mode.


 Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. The TWiki Installation Guide has step-by-step instructions.


 Use SSL to authenticate and secure the whole server.
->
>
->
>
+Change and reset passwords using forms on regular pages. Use topic-level TWikiAccessControl to restrict use as required.


 The ChangePassword form, TWiki/ChangePassword:
->
>
->
>
+ The ResetPassword form TWiki/ResetPassword:
->
>

Line: 1 6 to 1 6

Changed:

<
<

Controlling TWiki site access and logging authorized user activity

>
>

TWiki site access control and user activity tracking

Line: 17 to 17

Changed:

<
<

Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public - anyone can browse and edit freely, in classic Wiki mode.
Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. The TWiki Installation Guide has step-by-step instructions.
Use SSL to authenticate and secure the whole server.

>
>

Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public - anyone can browse and edit freely, in classic Wiki mode.
Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. The TWiki Installation Guide has step-by-step instructions.
Use SSL to authenticate and secure the whole server.

Line: 45 to 46

Added:

>
>

Line: 47 to 49

Added:

>
>

Change and reset passwords using forms on regular pages. Use topic-level TWikiAccessControl to restrict use as required.

The ChangePassword form, TWiki/ChangePassword:

Line: 48 to 55

Added:

>
>

Line: 49 to 57

Added:

>
>

The ResetPassword form TWiki/ResetPassword:

Line: 50 to 61

Added:

>
>

Line: 1 44 to 1 45
Added:
> >	Changing Passwords

Line: 1 44 to 1 45

Added:

>
>

Changing Passwords

-<
<
+TWiki does not authenticate users internally, it depends on the REMOTE_USER environment variable. This variable is set when you enable basic authentication or authentication via SSL (https protocol).
->
>
+Controlling TWiki site access and logging authorized user activity

  Overview 

TWiki does not authenticate users internally, it depends on the REMOTE_USER environment variable. This variable is set when you enable Basic Authentication (.htaccess) or SSL "secure server" authentication (https protocol).
-<
<
+ Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public.

 Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. TWiki Installation Notes has more.
->
>
+ Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public - anyone can browse and edit freely, in classic Wiki mode.


 Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. The TWiki Installation Guide has step-by-step instructions.
-<
<
+There is a way to tell TWiki to remember the user for the scripts that are not authenticated, ex: in case the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address/username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non-authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki persistently stores the IP address / username pairs in file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail if the IP address changes due to dynamically assigned IP addresses or proxy servers.
->
>
+There is a way to tell TWiki to remember the user for the scripts that are not authenticated, ex: in case the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address/username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non-authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki persistently stores the IP address/username pairs in the file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail if the IP address changes due to dynamically assigned IP addresses or proxy servers.
-<
<
+NOTE: To correctly enter a WikiName - your own or someone else's - be sure to include the Main web name in front of the Wiki username, followed by a period, and no spaces. Ex:
->
>
+NOTE: *To correctly enter a WikiName* - your own or someone else's - be sure to include the Main web name in front of the Wiki username, followed by a period, and no spaces. Ex:

Line: 1 6 to 1 6

Changed:

<
<

TWiki does not authenticate users internally, it depends on the REMOTE_USER environment variable. This variable is set when you enable basic authentication or authentication via SSL (https protocol).

>
>

Controlling TWiki site access and logging authorized user activity

Overview

Line: 13 to 17

Changed:

<
<

Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public.
Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. TWiki Installation Notes has more.

>
>

Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public - anyone can browse and edit freely, in classic Wiki mode.
Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. The TWiki Installation Guide has step-by-step instructions.

Line: 21 to 25

Changed:

<
<

There is a way to tell TWiki to remember the user for the scripts that are not authenticated, ex: in case the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address/username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non-authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki persistently stores the IP address / username pairs in file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail if the IP address changes due to dynamically assigned IP addresses or proxy servers.

>
>

Line: 37 to 41

Changed:

<
<

NOTE: To correctly enter a WikiName - your own or someone else's - be sure to include the Main web name in front of the Wiki username, followed by a period, and no spaces. Ex:

>
>

NOTE: *To correctly enter a WikiName* - your own or someone else's - be sure to include the Main web name in front of the Wiki username, followed by a period, and no spaces. Ex:

->
>
+TOC: No TOC in "TWiki.TWikiUserAuthentication"
-<
<
+TWiki does not authenticate users internally, it depends on the REMOTE_USER environment variable. This variable is set when you enable basic authentication or authentication via SSL (https protocol)
->
>
+TWiki does not authenticate users internally, it depends on the REMOTE_USER environment variable. This variable is set when you enable basic authentication or authentication via SSL (https protocol).
-<
<
+TWiki keeps track who made changes to topics at what time. This gives a complete audit trail of changes.
->
>
+TWiki uses visitor identification to keep track of who made changes to topics at what time and to manage a wide range of personal site settings. This gives a complete audit trail of changes and activity.
-<
<
+No special installation steps need to be performed in case the server is already autenticated. If not you can opt for one of these:

 Forget about authentication. All changes will be registered as TWikiGuest^? user, e.g. you can't tell who made changes.

 Use basic authentication for the edit and attach scripts. TWiki Installation Notes tells you more about that.

 Use SSL to authenticate and secure the whole server.
->
>
+  Authentication Options
-<
<
+The REMOTE_USER environment variable is only set for the scripts that are under authentication. If for example the edit, save and preview scripts are authenticated, but not view, you would get your WikiName in preview for the %WIKIUSERNAME% variable, but view will show TWikiGuest instead of your WikiName.
->
>
+No special installation steps need to be performed if the server is already authenticated. If not, you have three remaining options to controlling user access:

 Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public.

 Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. TWiki Installation Notes has more.

 Use SSL to authenticate and secure the whole server.
-<
<
+There is a way to tell TWiki to remember the user for the scripts that are not authenticated, e.g. for the case where the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address / username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki persistently stores the IP address / username pairs in file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail in case the IP address changes due to dynamically assigned IP addresses or proxy servers.
->
>
+  Tracking by IP Address
-<
<
+Test: You are TWikiGuest^?.
->
>
+The REMOTE_USER environment variable is only set for the scripts that are under authentication. If, for example, the edit, save and preview scripts are authenticated, but not view, you would get your WikiName in preview for the %WIKIUSERNAME% variable, but view will show TWikiGuest instead of your WikiName.

There is a way to tell TWiki to remember the user for the scripts that are not authenticated, ex: in case the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address/username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non-authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki persistently stores the IP address / username pairs in file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail if the IP address changes due to dynamically assigned IP addresses or proxy servers. 

Authentication Test: You are TWikiGuest^? (%WIKIUSERNAME%)

  TWiki Username vs. Login Username 

This section applies only if your netfrag.org is installed on a server that is both authenticated and on an intranet.

netfrag.org internally manages two usernames: Login username and TWiki username.


 Login username: When you login to the intranet, you use your existing login username, ex: pthoeny. This name is normally passed to netfrag.org by the REMOTE_USER environment variable, and used by internally by netfrag.org. Login usernames are maintained by your system administrator.

 TWiki username: Your name in WikiNotation, ex: PeterThoeny, is recorded when you register using TWikiRegistration; doing so also generates a personal home page in the Main web.



netfrag.org can automatically map an intranet username to a TWiki username, provided that the username pair exists in the TWikiUsers topic. This is also handled automatically when you register.


NOTE: To correctly enter a WikiName - your own or someone else's - be sure to include the Main web name in front of the Wiki username, followed by a period, and no spaces. Ex:
 Main.WikiUsername or %MAINWEB%.WikiUsername 
This points WikiUser to the netfrag.org.Main web, where user registration pages are stored, no matter which web it's entered in. Without the web prefix, the name appears as a NewTopic^? everywhere but in the Main web.
->
>
+-- MikeMannix - 29 Aug 2001

Line: 0 to 1

Added:

>
>

TOC: No TOC in "TWiki.TWikiUserAuthentication"

Line: 3 to 6

Changed:

<
<

>
>

Line: 5 to 8

Changed:

<
<

TWiki keeps track who made changes to topics at what time. This gives a complete audit trail of changes.

>
>

TWiki uses visitor identification to keep track of who made changes to topics at what time and to manage a wide range of personal site settings. This gives a complete audit trail of changes and activity.

Line: 7 to 10

Changed:

<
<

No special installation steps need to be performed in case the server is already autenticated. If not you can opt for one of these:

Forget about authentication. All changes will be registered as TWikiGuest^? user, e.g. you can't tell who made changes.
Use basic authentication for the edit and attach scripts. TWiki Installation Notes tells you more about that.
Use SSL to authenticate and secure the whole server.

>
>

Authentication Options

Line: 12 to 12

Changed:

<
<

The REMOTE_USER environment variable is only set for the scripts that are under authentication. If for example the edit, save and preview scripts are authenticated, but not view, you would get your WikiName in preview for the %WIKIUSERNAME% variable, but view will show TWikiGuest instead of your WikiName.

>
>

No special installation steps need to be performed if the server is already authenticated. If not, you have three remaining options to controlling user access:

Forget about authentication. All changes are registered to TWikiGuest^? user, so you can't tell who made changes. Your site is completely open and public.
Use Basic Authentication for the edit and attach scripts. This uses .htaccess and generates the familiar grey log-in window. TWiki Installation Notes has more.
Use SSL to authenticate and secure the whole server.

Line: 14 to 17

Changed:

<
<

There is a way to tell TWiki to remember the user for the scripts that are not authenticated, e.g. for the case where the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address / username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki persistently stores the IP address / username pairs in file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail in case the IP address changes due to dynamically assigned IP addresses or proxy servers.

>
>

Tracking by IP Address

Line: 16 to 19

Changed:

<
<

Test: You are TWikiGuest^?.

>
>

There is a way to tell TWiki to remember the user for the scripts that are not authenticated, ex: in case the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address/username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non-authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki persistently stores the IP address / username pairs in file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail if the IP address changes due to dynamically assigned IP addresses or proxy servers.

Authentication Test: You are TWikiGuest^? (%WIKIUSERNAME%)

TWiki Username vs. Login Username

This section applies only if your netfrag.org is installed on a server that is both authenticated and on an intranet.

netfrag.org internally manages two usernames: Login username and TWiki username.

Login username: When you login to the intranet, you use your existing login username, ex: pthoeny. This name is normally passed to netfrag.org by the REMOTE_USER environment variable, and used by internally by netfrag.org. Login usernames are maintained by your system administrator.
TWiki username: Your name in WikiNotation, ex: PeterThoeny, is recorded when you register using TWikiRegistration; doing so also generates a personal home page in the Main web.

netfrag.org can automatically map an intranet username to a TWiki username, provided that the username pair exists in the TWikiUsers topic. This is also handled automatically when you register.

NOTE: To correctly enter a WikiName - your own or someone else's - be sure to include the Main web name in front of the Wiki username, followed by a period, and no spaces. Ex:
Main.WikiUsername or %MAINWEB%.WikiUsername
This points WikiUser to the netfrag.org.Main web, where user registration pages are stored, no matter which web it's entered in. Without the web prefix, the name appears as a NewTopic^? everywhere but in the Main web.

Line: 18 to 43

Added:

>
>

-- MikeMannix - 29 Aug 2001

-<
<
+TWiki does not authenticate users internally, it depends on the REMOTE_USER environment variable. This variable is set when you enable basic authentication or authentication via SSL (https protocol)
->
>
+  TWiki Authentication 

TWiki does not authenticate users internally, it depends on the REMOTE_USER environment variable. This variable is set when you enable basic authentication or authentication via SSL (https protocol)
-<
<
+ Use basic authentication for the edit and attach scripts. TWiki Installation tells you more about that.
->
>
+ Use basic authentication for the edit and attach scripts. TWiki Installation Notes tells you more about that.
-<
<
+The REMOTE_USER environment variable is only set for the scripts that are under authentication. If for example the edit, save and preview scripts are authenticated, but not view, you would get your WikiName in preview for the %WIKIUSERNAME% variable, but view will show TWikiGuest instead of your WikiName.
->
>
+The REMOTE_USER environment variable is only set for the scripts that are under authentication. If for example the edit, save and preview scripts are authenticated, but not view, you would get your WikiName in preview for the %WIKIUSERNAME% variable, but view will show TWikiGuest instead of your WikiName.

There is a way to tell TWiki to remember the user for the scripts that are not authenticated, e.g. for the case where the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address / username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in TWiki.cfg. TWiki persistently stores the IP address / username pairs in file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail in case the IP address changes due to dynamically assigned IP addresses or proxy servers.
-<
<
+There is a way to tell TWiki to remember the user for the scripts that are not authenticated, e.g. for the case where the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address / username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in wikicfg.pm. TWiki persistently stores the IP address / username pairs in file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail in case the IP address changes due to dynamically assigned IP addresses or proxy servers. Test: You are TWikiGuest^?.
->
>
+Test: You are TWikiGuest^?.
-<
<
+-- PeterThoeny^? - 02 Nov 2000
->
>
+-- PeterThoeny - 16 Mar 2001

Line: 1 to 1

Changed:

<
<

>
>

TWiki Authentication

Line: 7 to 9

Changed:

<
<

Use basic authentication for the edit and attach scripts. TWiki Installation tells you more about that.

>
>

Use basic authentication for the edit and attach scripts. TWiki Installation Notes tells you more about that.

Line: 10 to 12

Changed:

<
<

>
>

Line: 12 to 16

Changed:

<
<

There is a way to tell TWiki to remember the user for the scripts that are not authenticated, e.g. for the case where the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address / username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in wikicfg.pm. TWiki persistently stores the IP address / username pairs in file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail in case the IP address changes due to dynamically assigned IP addresses or proxy servers. Test: You are TWikiGuest^?.

>
>

Test: You are TWikiGuest^?.

Line: 14 to 18

Changed:

<
<

-- PeterThoeny^? - 02 Nov 2000

>
>

-- PeterThoeny - 16 Mar 2001

Line: 1 to 1
Added:
> >	TWiki does not authenticate users internally, it depends on the `REMOTE_USER` environment variable. This variable is set when you enable basic authentication or authentication via SSL (https protocol) TWiki keeps track who made changes to topics at what time. This gives a complete audit trail of changes. No special installation steps need to be performed in case the server is already autenticated. If not you can opt for one of these: Forget about authentication. All changes will be registered as TWikiGuest^? user, e.g. you can't tell who made changes. Use basic authentication for the `edit` and `attach` scripts. TWiki Installation tells you more about that. Use SSL to authenticate and secure the whole server. The `REMOTE_USER` environment variable is only set for the scripts that are under authentication. If for example the `edit`, `save` and `preview` scripts are authenticated, but not `view`, you would get your WikiName in `preview` for the `%WIKIUSERNAME%` variable, but `view` will show `TWikiGuest` instead of your WikiName. There is a way to tell TWiki to remember the user for the scripts that are not authenticated, e.g. for the case where the `REMOTE_USER` environment variable is not set. TWiki can be configured to remember the IP address / username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non authenticated scripts like `view` will show the correct username instead of `TWikiGuest`. You can enable this by setting the `$doRememberRemoteUser` flag in `wikicfg.pm`. TWiki persistently stores the IP address / username pairs in file `$remoteUserFilename`, which is `"$dataDir/remoteusers.txt"` by default. Please note that this can fail in case the IP address changes due to dynamically assigned IP addresses or proxy servers. Test: You are TWikiGuest^?. -- PeterThoeny^? - 02 Nov 2000

Line: 1 to 1

Added:

>
>

TWiki keeps track who made changes to topics at what time. This gives a complete audit trail of changes.

No special installation steps need to be performed in case the server is already autenticated. If not you can opt for one of these:

Forget about authentication. All changes will be registered as TWikiGuest^? user, e.g. you can't tell who made changes.
Use basic authentication for the edit and attach scripts. TWiki Installation tells you more about that.
Use SSL to authenticate and secure the whole server.

There is a way to tell TWiki to remember the user for the scripts that are not authenticated, e.g. for the case where the REMOTE_USER environment variable is not set. TWiki can be configured to remember the IP address / username pair whenever an authentication happens (edit topic, attach file). Once remembered, the non authenticated scripts like view will show the correct username instead of TWikiGuest. You can enable this by setting the $doRememberRemoteUser flag in wikicfg.pm. TWiki persistently stores the IP address / username pairs in file $remoteUserFilename, which is "$dataDir/remoteusers.txt" by default. Please note that this can fail in case the IP address changes due to dynamically assigned IP addresses or proxy servers. Test: You are TWikiGuest^?.

-- PeterThoeny^? - 02 Nov 2000

	netfrag.org > TWiki > TWikiUserAuthentication (r1.1 vs. r1.13)
	TWiki . { Home^? \| Welcome \| Register \| Changes \| Index \| Search \| Go }