AFAIK one can put galaxy behind a http proxy and let this to manage the authentication binding do LDAP.
# Use user provided in an upstream server's $REMOTE_USER variable
#use_remote_user = False
# If use_remote_user is enabled and your external authentication
# method just returns bare usernames, set a default mail domain
I suppose I should set use_remote_user = True to enable proxied authentication... nevertheless the email passed to galaxy looks like a $REMOTE_USER + REMOVE_USER_MAILDOMAIN set in the unverse_wsgi.ini... does that mean that I will not able to authenticate as my ldap username is dcittaro and my email is
davide.cittaro@ifom-ieo-campus.it?
thanks
d