This is a hack. Unfortunately I could not find a description of how to put MantisBT behind Apache with NTLM auth.
Set authentication to BASIC_AUTH in config/config_inc.php:
$g_login_method = BASIC_AUTH;
core/authentication_api.php
- comment out lines 289-291 to disable password check:
// if( !auth_does_password_match( $t_user_id, $p_password ) ) {
// user_increment_failed_login_count( $t_user_id );
// return false;
// }
login.php
line 60 - force user name to remote user and provide some password string:
$f_username = $_SERVER['REMOTE_USER']; //auth_prepare_username( $f_username );
$f_password = 'some_password'; //auth_prepare_password( $f_password );
Rename login_page.php
to login_page.php.bak
and copy login.php
to login_page.php
.
layout_api.php
- comment out lines 505 and 508:
// echo '<li class="divider"></li>';
# Logout
// layout_navbar_menu_item( helper_mantis_url( 'logout_page.php' ), lang_get( 'logout_link' ), 'fa-sign-out' );