Create LDAP backed Authentication

VERIFIED FIXED

Status

--
blocker
VERIFIED FIXED
8 years ago
7 years ago

People

(Reporter: ozten, Assigned: ozten)

Tracking

Details

(Whiteboard: [qa-])

(Assignee)

Description

8 years ago
Add authentication to Mozillians.org. It should ultimately be backed by an LDAP directory.

Requirements:
* Data access to the LDAP directory should be as the user who is logged in, so that ACL work properly
* A secure, low risk implementation

Design Doc
http://etherpad.mozilla.com:9000/mozillians-auth

Comment 2

8 years ago
That looks crazy full-featured and well-documented. I like that it seems to have support for co-existing with other auth backends.

Works for me.
(Assignee)

Comment 3

7 years ago
An initial stab at auth is working.

django-auth-ldap uses a shared credentials to populate the request.user object. This causes issues such as Bug#673951.

Using django-auth-ldap for only authentication and larper for authorization works.

Leaving open until we're code complete.
(Assignee)

Updated

7 years ago
Assignee: nobody → ozten.bugs
Severity: normal → blocker
(Assignee)

Comment 4

7 years ago
This is code complete.
Status: NEW → RESOLVED
Last Resolved: 7 years ago
Resolution: --- → FIXED
Verifying as qa-
Status: RESOLVED → VERIFIED
Whiteboard: [qa-]

Updated

7 years ago
Component: mozillians.org → Phonebook
Product: Websites → Community Tools
QA Contact: mozillians-org → phonebook
Version: unspecified → other
You need to log in before you can comment on or make changes to this bug.