11 Nov
2011
11 Nov
'11
9:54 p.m.
Hi!
It is possible to login in xwiki as a user without password? I want to link
from a software in my Hospital to xwiki. The only variable a have is the
real-name and user-name. I think about a login via velocity script with a
special admin user/password as a bridge component.
Hospital system ------------------------------> xwiki
username "foo" foo
admin ----open xwiki--------------->
pasword
--
View this message in context:
http://xwiki.475771.n2.nabble.com/autologin-without-password-tp6986733p6986…
Sent from the XWiki- Users mailing list archive at Nabble.com.
12 Nov
12 Nov
8:58 p.m.
You could login with a trivial password such as 'password' which is hardcoded into
your end.
I could help you more if you knew how your stuff will talk to XWiki.
For example will it speak http like the web browser or webdav or rest?
Caleb
On 11/11/2011 03:54 PM, Legeinfo wrote:
Hi!
It is possible to login in xwiki as a user without password? I want to link
from a software in my Hospital to xwiki. The only variable a have is the
real-name and user-name. I think about a login via velocity script with a
special admin user/password as a bridge component.
Hospital system ------------------------------> xwiki
username "foo" foo
admin ----open xwiki--------------->
pasword
--
View this message in context:
http://xwiki.475771.n2.nabble.com/autologin-without-password-tp6986733p6986…
Sent from the XWiki- Users mailing list archive at Nabble.com.
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
9:33 p.m.
You cannot use an empty password as this is blocked in the authentication
system.
But as Caleb says you can use any password as long as it is set for that
user.
Then you can pass the username and password in the URL like the login form
would
Ludovic
2011/11/11 Legeinfo <vl(a)legeinfo.net>
Hi!
It is possible to login in xwiki as a user without password? I want to link
from a software in my Hospital to xwiki. The only variable a have is the
real-name and user-name. I think about a login via velocity script with a
special admin user/password as a bridge component.
Hospital system ------------------------------> xwiki
username "foo" foo
admin ----open xwiki--------------->
pasword
--
View this message in context:
http://xwiki.475771.n2.nabble.com/autologin-without-password-tp6986733p6986…
Sent from the XWiki- Users mailing list archive at Nabble.com.
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
--
Ludovic Dubost
Founder and CEO
Blog: http://blog.ludovic.org/
XWiki: http://www.xwiki.com
Skype: ldubost GTalk: ldubost
10:26 p.m.
Thank you for replying!
I can start a windows batch with %username% as a variable. I think about
"http://xwiki?username=foo&Realname=Volker Lap..".
Xwiki should lookup the user. If not existing? Make a new user. If existing
login.
But the problem is that i have do not have a password, or only a trivial
password. How to protect this kind of login process? I was thinking about a
admin login (http or rest) and doing the login process for this user without
password. Volker
--
View this message in context:
http://xwiki.475771.n2.nabble.com/autologin-without-password-tp6986733p6988…
Sent from the XWiki- Users mailing list archive at Nabble.com.
13 Nov
13 Nov
4:35 a.m.
If you're using batch files to communicate with the wiki, you can create a user by
sending a request to:
http://xwiki/bin/register/XWiki/Register?register_first_name=John®is…
the only 3 required fields are register_password, register2_password, and xwikiname (the
name of the user document, must only contain a-z, A-Z, 0-9, and _ characters)
note that you will need to disable CSRF prevention tokens in the xwiki.properties file for
this to work but given you are looking to register without any password, CSRF attack
protection is probably not something you are looking for.
then to save a page as your new user, this would be the wget command, you will need to
change that for whatever http client you use.
wget --user=jsmith --password=trivial
http://xwiki/bin/save/Main/WebHome?basicauth=1&content=HelloWorldorld!
You can just look at the source and mimic any request you would like to with your script,
you can also install firebug to watch the requests happen in real time so you can mimic
them easier.
Caleb
On 11/12/2011 04:26 PM, Legeinfo wrote:
Thank you for replying!
I can start a windows batch with %username% as a variable. I think about
"http://xwiki?username=foo&Realname=Volker Lap..".
Xwiki should lookup the user. If not existing? Make a new user. If existing
login.
But the problem is that i have do not have a password, or only a trivial
password. How to protect this kind of login process? I was thinking about a
admin login (http or rest) and doing the login process for this user without
password. Volker
--
View this message in context:
http://xwiki.475771.n2.nabble.com/autologin-without-password-tp6986733p6988…
Sent from the XWiki- Users mailing list archive at Nabble.com.
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
4788
days inactive
4790
days old
4 comments
3 participants
participants (3)
-
Caleb James DeLisle -
Legeinfo -
Ludovic Dubost