www.cendio.com
Bug 4264 - Update tlclient.cgi to use new login API instead of do_login
: Update tlclient.cgi to use new login API instead of do_login
Status: CLOSED WONTFIX
: ThinLinc
VSM Server
: 3.2.0
: PC Unknown
: P2 Normal
: 4.3.0
Assigned To:
:
:
: 4597
: 4562
  Show dependency treegraph
 
Reported: 2012-04-18 10:58 by
Modified: 2014-09-18 10:54 (History)
Acceptance Criteria:


Attachments


Note

You need to log in before you can comment on or make changes to this bug.


Description From cendio 2012-04-18 10:58:54
Currently, tlclient.cgi uses the old style do_login API. It needs to be updated
to use the new one. This means that we must use the thinlinc-login approach,
thus doing calls as the target user. This might be tricky: tlclient.cgi is
typically not running as root but instead as a user such as "httpd". Thus, it
cannot change to the target user. One solution is to actually start an SSH
connection, just like tlclient does. Another one is to consider the
architecture for the HTML5 client (bug 4132). The current idea for that bug is
to introduce a new daemon "websocketserver" that runs as root, corresponding to
sshd. Perhaps tlclient.cgi can do logins through this daemon as well. This way,
we do not need to start SSH connections for any browser client.
------- Comment #1 From cendio 2014-06-17 15:58:00 -------
Since the Java client will be removed, we can remove this code from
tlclient.cgi entirely. Will be done on bug 4597 and bug 5191.