Notice: In order to edit this ticket you need to be either: a Product Owner, The owner or the reporter of the ticket, or, in case of a Task not yet assigned, a team_member"

Task #6703 (closed)

Opened 8 years ago

Closed 8 years ago

LDAP: allow root user lookup or disallow guest

Reported by: jamoore Owned by: jamoore
Priority: major Milestone: Unscheduled
Component: Security Version: n.a.
Keywords: n.a. Cc:
Resources: n.a. Referenced By: n.a.
References: n.a. Remaining Time: 0.0d
Sprint: n.a.

Description (last modified by jmoore)

Depending on the overall strategy chosen, either the "guest" user should also be kept non-LDAP, or the root user should be LDAP-able (see #6702), keeping in mind, though, that many LDAPs will have a "root" user who has nothing to do with OMERO. For this to work, properly, the mapping of "omeName" may have to be altered, so that the DN is automatically trusted regardless of the user's name (in which case it may be necessary to prevent user synchronization!)

Change History (2)

comment:1 Changed 8 years ago by jmoore

  • Description modified (diff)

comment:2 Changed 8 years ago by jmoore <josh@…>

  • Remaining Time set to 0
  • Resolution set to fixed
  • Status changed from new to closed

(In [74f175d86e7b0e496b982692548dcd255c994539/ome.git] on branch develop) Correct user_filter and user filtering (Fix #6248, #6703)

Note: See TracTickets for help on using tickets. You may also have a look at Agilo extensions to the ticket.

1.3.13-PRO © 2008-2011 Agilo Software all rights reserved (this page was served in: 0.76538 sec.)

© 2000-2014 University of Dundee & Open Microscopy Environment. Creative Commons Attribution 3.0 Unported License
OME source code is available under the GNU General public license or through commercial license from Glencoe Software

We're Hiring!