I need user login/logout data for thruk. I have enabled cookie authentication along with LDAP. (no changes made in default thruk_cookie_auth.include, only paths are adjusted as per installation) However, problem with cookie authentication is -
1) Thruk logout doesn't work in Mozilla Firefox. It works in Chrome though. Means while logging in, it prompts for username and password dialog box, but after logout it shows regular thruk login form for username and password and not the dialog box. It should show the dialog box. We need to clear active logins in mozilla history for logout every time.
2) If user log in with dialog box, thruk only captures session creation logs and not login logs. If user logs in with regular thruk login form (thruk/cgi-bin/login.cgi), it captures session creation, login and logout logs.
Can anyone suggest how to fix this?
Below is our apache configuration
<VirtualHost *:8085>
DocumentRoot /opt/app/thruk/share/root/thruk
<Directory /opt/app/thruk/share/root/thruk>
Options FollowSymLinks
AllowOverride All
order allow,deny
allow from all
</Directory>
Alias /thruk/documentation.html /opt/app/thruk/share/root/thruk/documentation.html
Alias /thruk/startup.html /opt/app/thruk/share/root/thruk/startup.html
AliasMatch ^/thruk/plugins/(.*?)/(.*)$ /opt/app/thruk/etc/plugins/plugins-enabled/$1/root/$2
Alias /thruk/themes/ /opt/app/thruk/etc/themes/themes-enabled/
Alias /thruk /opt/app/thruk/share/root/thruk
<Location /thruk/>
Options ExecCGI FollowSymLinks
Allow from all
order allow,deny
AuthName "Thruk Monitoring"
AuthType Basic
#leagacy file authentication first, then ldap
AuthBasicProvider file ldap
#legacy file (or set it to /dev/null
AuthUserFile /opt/app/thruk/etc/htpasswd
#ldap
AuthLDAPBindDN "****"
AuthLDAPBindPassword "****"
AuthLDAPURL "ldaps://***)"
Require user aaa bbb ccc
</Location>
<IfModule mod_fcgid.c>
AddHandler fcgid-script .sh
MaxRequestsPerProcess 100
</IfModule>
</VirtualHost>
========================================================
Below are cookie auth settings.
cookie_path = /
#cookie_secure_only = 1
cookie_auth_login_url = thruk/cgi-bin/login.cgi
cookie_auth_session_timeout = 86400
cookie_auth_session_cache_timeout = 30
cookie_auth_login_timeout = 10
cookie_auth_login_hook = ./bin/hook.sh
cookie_auth_verbose = 3
cookie_auth_disable_after_failed_logins = 10