Closed Bug 664279 Opened 13 years ago Closed 13 years ago

Create LDAP backed Authentication

Categories

(Participation Infrastructure :: Phonebook, defect)

Product:
Participation Infrastructure
Component:
Phonebook
Platform:
x86
Linux
Type:
defect
Priority:
Not set
Severity:
blocker

Tracking

(Not tracked)

Status:
VERIFIED FIXED

People

(Reporter: ozten, Assigned: ozten)

Details

(Whiteboard: [qa-]) 

Add authentication to Mozillians.org. It should ultimately be backed by an LDAP directory.

Requirements:
* Data access to the LDAP directory should be as the user who is logged in, so that ACL work properly
* A secure, low risk implementation

Design Doc
http://etherpad.mozilla.com:9000/mozillians-auth
That looks crazy full-featured and well-documented. I like that it seems to have support for co-existing with other auth backends.

Works for me.
An initial stab at auth is working.

django-auth-ldap uses a shared credentials to populate the request.user object. This causes issues such as Bug#673951.

Using django-auth-ldap for only authentication and larper for authorization works.

Leaving open until we're code complete.
Assignee: nobody → ozten.bugs
Severity: normal → blocker
This is code complete.
Status: NEW → RESOLVED
Closed: 13 years ago
Resolution: --- → FIXED
Verifying as qa-
Status: RESOLVED → VERIFIED
Whiteboard: [qa-]
Component: mozillians.org → Phonebook
Product: Websites → Community Tools
QA Contact: mozillians-org → phonebook
Version: unspecified → other
You need to log in before you can comment on or make changes to this bug.