Closed
Bug 730405
Opened 12 years ago
Closed 12 years ago
LDAP connection failure should bubble up as 503 errors
Categories
(Webtools Graveyard :: Elmo, defect, P3)
Tracking
(Not tracked)
RESOLVED
FIXED
2.1
People
(Reporter: peterbe, Assigned: peterbe)
Details
Attachments
(1 file)
8.64 KB,
patch
|
Pike
:
review+
|
Details | Diff | Splinter Review |
To reproduce, disconnect any VPN, start django and try to log in. You'll get a "** debug: LDAP server is down" on stdout and the user gets a cryptic message as if he typing in his email and password wrong. The 503 is defined as: 503 Service Unavailable The server is currently unavailable (because it is overloaded or down for maintenance).[2] Generally, this is a temporary state.
Assignee | ||
Comment 1•12 years ago
|
||
There's an important implication of this. Due to the nature of authentication backends in Django, any one authentication backend is not supposed to raise exceptions. It's supposed to return the user or None. What this means is that if our ldap is down, you won't be able to log in as user admin. It won't swallow the LDAP error and carry on with the django/mysql one. HOWEVER, the way we have it set up is that we only have 1 authentication backend anyway (i.e. `AUTHENTICATION_BACKENDS = ('lib.auth.backends.MozLdapBackend',)`) so there's no such thing as trying the mysql backend. The end result here is that if the connection between us and LDAP is down for some reason, the user won't incorrectly think he typed in the wrong password. And we get "alerted" by Arecibo that there's something we need to work on.
Attachment #600533 -
Flags: review?(l10n)
Assignee | ||
Updated•12 years ago
|
Priority: -- → P3
Updated•12 years ago
|
Attachment #600533 -
Flags: review?(l10n) → review+
Assignee | ||
Comment 2•12 years ago
|
||
Landed https://github.com/mozilla/elmo/commit/01f024047c18160f7a978dffd49239ec88b946f1
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
Updated•12 years ago
|
Assignee: nobody → peterbe
Target Milestone: --- → 2.1
Updated•4 years ago
|
Product: Webtools → Webtools Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•