Firstly, thanks for your work on getting this going on D6 - really appreciated.
I would like the option to be able to auto create a user if they don't already exist. At the moment, if a user exists in drupal, I can log them in with this module, but if they don't, then I keep getting prompted for a login.

Comments

decafdennis’s picture

decafdennis commented
Status: Active » Closed (won't fix)

You're welcome!

The requested feature is not the purpose of this module: httpauth allows existing users to login using HTTP authentication. It would be better to create a module called Auto-Create Users (or similar) that hooks into Drupal's authentication system and creates users when the entered username does not exist; then the httpauth module will automatically work with this module.

Furthermore, automatically creating users based only on a username and a single password (1) defeats the purpose of having users to login at all, and (2) will quickly fill up your site with user accounts with misspelled usernames and passwords.

Re-open this issue if you want to give any counter arguments as to why httpauth needs this functionality.

grimsy’s picture

grimsy commented
Status: Closed (won't fix) » Active

I can see your point about creating a separate module.

As far as your other points, because the http auth can be set against an external database (in my case ldap), the only accounts that will be created are accounts that are also valid in that database. If the user misspells their username and or password, apache will reject their connection attempt and ask them to try again.

I definitely wouldn't say that httpauth 'needs' this functionality, but I think it would be very helpful for myself and others that use ldap etc to authenticate their users.
I have previously used webserver_auth (http://drupal.org/project/webserver_auth) which had this functionality and meant that our administrators didn't have to maintain multiple user directories, but unfortunately there hasn't been much progress on getting it ported across for D6.

I understand if you don't want to include this functionality, but thought I'd try to explain myself anyway :)

decafdennis’s picture

decafdennis commented
Status: Active » Closed (won't fix)

grimsy, I know better understand why you would want this functionality. And indeed: webserver_auth fits your purposes, but is not yet supported for Drupal 6. Since httpauth is made for a completely different purpose, I am not willing to add the functionality to httpauth, though. Maybe you should ask on IRC in #drupal about webserver_auth, and if anyone is willing to contribute a 6.x port. The maintainer ('moshe') is regularly available in the channel too.