Changes between Version 6 and Version 7 of GuardPlugin

Timestamp:

2011-09-23T21:56:26Z (13 years ago)

Author:

Pan Luo

Comment:

--

GuardPlugin

@@ -97 +97 @@
 * loginError: The error message when user logged in successfully through Shibboleth but do not have an valid account or permission in the application. This is an example to override the [http://api13.cakephp.org/class/auth-component AuthComponent] properties. 
 
+=== Note ===
+Change the Security.level to low in core.php if using external authentication module
+{{{
+#!php
+ Configure::write('Security.level', 'low');
+}}}
 
 == Customize Modules ==
@@ -128 +134 @@
 The new module should be placed in app/libs with the name like: MODULENAME_module.php
 
+== FAQs ==
+
+ * When I enabled an external auth module, it goes into a redirection loop after authenticated back from external module.
+Change the Security.level to low in core.php. If Security.level is high or medium, cakephp checks the referral link. It will invalid the session if referral link is from external source. (http://www.php.net/manual/en/session.configuration.php#ini.session.referer-check)
+
+