Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

Automatic login with Active Directory users

https://support.nagios.com/forum/viewtopic.php?t=22060

Page 1 of 1

Automatic login with Active Directory users

Posted: Wed Nov 13, 2013 11:37 am
by tentaclefi
Hi,

We're using Active Directory module for logging in our users.

We'd like to have our support portal to automatically log our users in without
the need to manually enter username and password every time user visits nagios.

We could just HTTP POST the data to nagios login but unfortunately this
seems to be prevented as CSRF attack as stated here:

http://support.nagios.com/wiki/index.ph ... .22_Errors

Is there way to disable this CSRF protection?

Any ideas would be welcome.

Thanks!

Re: Automatic login with Active Directory users

Posted: Wed Nov 13, 2013 12:07 pm
by sreinhardt
You could look into using each users backend api token for the initial page load and session start. Otherwise no at this point there is not a way to remove that csrf protection. I will say that other companies have implemented similar login strategies, although the end result is not generally shared back with us.
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited