Overview

scm-auth-remote-plugin
==============================
This is a authentication plugin for scm-manager (http://www.scm-manager.org)
that uses a http header variable to authenticate a user.
The idea is to use what every authentication mechanism your reverse proxy
supports and forward the authenticated user to the scm-manager application
via a http header variable.

As an example here is an apache configuration that uses the sspi module to
authenticate the user and then sets the header variable X_REMOTE_USER to the
authenticated user name.

    AuthName "SSPI Authentication"
    AuthType SSPI
    SSPIAuth On
    SSPIOmitDomain On
    SSPIUsernameCase lower
    Require valid-user
    
    RewriteEngine On
    
    RewriteRule (.*) http://myserver:8081/scm/$1 [L,P,E=RU:%{REMOTE_USER}]
    ProxyPassReverse http://10.4.177.133:8081/scm/
    
    RequestHeader set X_REMOTE_USER %{RU}e
    
If the path on your reverse proxy is different then on the backend server you 
must also add a ProxyPassReverseCookiePath directive like:

    ProxyPassReverseCookiePath /scm /myscm
    
IMPORTANT SECURITY INFORMATION
THIS PLUGIN IN ONLY MEANT TO BE USED BEHIND A REVERSE PROXY SERVER
THAT PREVENTS THE END USER OF SETTING THE HEADER VARIABLE HIM SELF