Open Bug 578633 Opened 15 years ago Updated 12 years ago

Option for local account lockout using LDAP/Radius login methods

Categories

(Bugzilla :: User Accounts, enhancement, P3)

Product:
Bugzilla
Component:
User Accounts
Type:
enhancement

Tracking

()

People

(Reporter: graeme, Unassigned)

Details

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.6) Gecko/20100625 Firefox/3.6.6 GTB7.1 ( .NET CLR 3.5.30729) Build Identifier: The lockout policy introduced in Bug 355283 doesn't allow bugzilla account lockout to be used where the instance is not using DB authentication (ie LDAP/Radius). It would be good if it was possible to turn on the lockout and associated maintainer email for these alternate authentication mechanisms - there are instances where admins will not apply a global lockout on the authenticating server (for whatever reason), and being able to do it application side is much more useful. The notification email is useful to the BZ maintainer, especially since this may not be the same person as the admin in charge of the LDAP/Radius... Having it as a toggle in the parameters ("Use lockout policy for LDAP/Radius") would be useful. Reproducible: Always
Yeah, sounds reasonable. I didn't implement it originally because I thought that people would just want to use the lockout policy of their authentication provider, but I see the utility of having a preference to turn it on for the Bugzilla side.
Status: UNCONFIRMED → NEW
Ever confirmed: true
Priority: -- → P3
You need to log in before you can comment on or make changes to this bug.