[horde] Can I insert an X-Horde-Authenticated as header
Liam Hoekenga
liamr at umich.edu
Thu Mar 27 11:25:49 UTC 2008
Why not just add appropriate entries to imp/headers.php?
We have an SSO that sets REMOTE_USER, and we add this to imp/headers.php...
$_header['X-Remote-Browser'] = $_SERVER['HTTP_USER_AGENT'];
$_header['X-IMP-Server'] = $_SERVER['SERVER_ADDR'];
$_header['X-Originating-IP'] = $_SERVER['REMOTE_ADDR'];
$_header['X-Originating-User'] = $_SERVER['REMOTE_USER'];
Liam
Quoting Kevin Konowalec <webadmin at ualberta.ca>:
> We did exactly that. Simply edit compose.php and add something
> similar to the following:
>
> /* Add an X-SendingUser header to always identify the user who sent
> * this, no matter what they set their silly aliases to.
> */
> $msg_headers->addHeader('X-IMAP-User', $_SESSION['imp']['user']);
> $msg_headers->addHeader('X-IMAP-Server', $_SESSION['imp']
> ['server']);
>
> We added it just after the X-Priority header was added. Works great -
> we've identified a few shmucks trying to masquerade as other users.
> The headers don't lie!
>
> Enjoy!
>
> Kevin
>
>
>
>
> On Mar 26, 2008, at 11:25 PM, ram wrote:
>
>> I have a horde web interface to an imap server
>>
>> People are allowed to change the from addresses by policy. But I still
>> want to know which user actually sent the mail
>>
>> Can I find this out ?
>>
>> Thanks
>> Ram
More information about the horde
mailing list