Username Authorizer

The Username Authorizer provides username-based authentication.

Fully qualified class name: AUTHTYPE=org.signserver.server.UsernameAuthorizer

The Username Authorizer can be used if SignServer sits behind an Apache front-end which uses HTTP basic authentication. With this Authorizer, the username is logged but the password is not checked as it is assumed to be checked by the front-end.

The Username Authorizer can be configured to either accept all usernames or only accept those usernames listed in one of its properties.

Property

Description

ACCEPT_ALL_USERNAMES

If false (default), specify the usernames in ACCEPT_USERNAMES.

If true, no usernames are specified.

ACCEPT_USERNAMES

If ACCEPT_ALL_USERNAMES is false, specify the allowed usernames.

Example:

ACCEPT_USERNAMES = user1;user2;user3