Add authentication to Mozillians.org. It should ultimately be backed by an LDAP directory. Requirements: * Data access to the LDAP directory should be as the user who is logged in, so that ACL work properly * A secure, low risk implementation Design Doc http://etherpad.mozilla.com:9000/mozillians-auth
Would something like this work: http://packages.python.org/django-auth-ldap/
That looks crazy full-featured and well-documented. I like that it seems to have support for co-existing with other auth backends. Works for me.
An initial stab at auth is working. django-auth-ldap uses a shared credentials to populate the request.user object. This causes issues such as Bug#673951. Using django-auth-ldap for only authentication and larper for authorization works. Leaving open until we're code complete.
Assignee: nobody → ozten.bugs
Severity: normal → blocker
This is code complete.
Status: NEW → RESOLVED
Last Resolved: 7 years ago
Resolution: --- → FIXED
Verifying as qa-
Status: RESOLVED → VERIFIED
Component: mozillians.org → Phonebook
Product: Websites → Community Tools
QA Contact: mozillians-org → phonebook
Version: unspecified → other
You need to log in before you can comment on or make changes to this bug.