Redmine

This is also required for kerberos authentication.

If the application run under apache, it should be able to receive the user from environment.

This is simple, as I don't know ruby I cannot promis it is the best solution.
But you can have configuration option for a request variable to take the user from.
In order to support basic authentication (kerberos or SSL) under apache with mod_rails, I only had to do the following:

   # Returns the current user or nil if no user is logged in
   def find_current_user
+    if request.env["REMOTE_USER"]
+      ( User.find_by_login(request.env["REMOTE_USER"]) rescue nil)
-    if session[:user_id]
+    elsif session[:user_id]
       # existing session
       (User.active.find(session[:user_id]) rescue nil)

As [1] wanted to have a different variable... So I guess the actual string may be configurable.

This is very important for enterprise deployment, please set milestone.

Thanks!

Very much agree.

We use this together with mod_auth_kerb

I'm also interested to have external authentication support using Kerberos.

I'd like to see Kerberos support added as well.

I'm agree. It would be nice to be able to use Kerberos authentication.

I've added a custom external authenticator to Redmine by means of a plugin that modifies the Authentication Sources view to include something other than LDAP.

http://www.redmine.org/projects/redmine/wiki/Plugin_List/#Mac-OS-X-Identity-Services-plugin

It would be helpful if there was a more standard way to add a subclass of AuthSource and a custom form for it, but what I've done so far works fine.

-- Brian Wells