Accept HTTP auth even if not in passwd file. Give DEFAULT role.

2 files changed, 4 insertions, 0 deletions

diff --git a/app/acf-util/acf-util.roles b/app/acf-util/acf-util.roles
index 99daf79..926b74d 100644
--- a/app/acf-util/acf-util.roles
+++ b/app/acf-util/acf-util.roles
@@ -1,4 +1,5 @@
 GUEST=logon/logon,logon/logoff,logon/status,welcome/read
+DEFAULT=
 USER=password/editme,roles/read
 EXPERT=
 ADMIN=logon/logon,logon/logoff,logon/status,password/editme,password/status,password/edituser,password/newuser,password/deleteuser,roles/read,roles/getpermslist,roles/viewuserroles,roles/viewroleperms,roles/viewroles,roles/editrole,roles/deleterole,roles/newrole,welcome/read,password/status,password/edituser,password/newuser,password/deleteuser,roles/getpermslist,roles/viewuserroles,roles/viewroleperms,roles/viewroles,roles/editrole,roles/deleterole,roles/newrole,skins/update
diff --git a/app/acf_www-controller.lua b/app/acf_www-controller.lua
index b16a8aa..80d72e6 100644
--- a/app/acf_www-controller.lua
+++ b/app/acf_www-controller.lua
@@ -302,6 +302,9 @@ mymodule.mvc.on_load = function (self, parent)
 		self.sessiondata.id = sessionlib.random_hash(512)
 		authenticator = require("authenticator")
 		self.sessiondata.userinfo = authenticator.get_userinfo(self, ENV.REMOTE_USER)
+		if not self.sessiondata.userinfo then
+			self.sessiondata.userinfo = {userid=ENV.REMOTE_USER, roles={"DEFAULT"}}
+		end
 		self.logevent("Automatic logon as ENV.REMOTE_USER: "..tostring(ENV.REMOTE_USER))
 	end