Task #6703 (closed)
Opened 13 years ago
Closed 13 years ago
LDAP: allow root user lookup or disallow guest
Reported by: | jamoore | Owned by: | jamoore |
---|---|---|---|
Priority: | major | Milestone: | Unscheduled |
Component: | Security | Version: | n.a. |
Keywords: | n.a. | Cc: | |
Resources: | n.a. | Referenced By: | n.a. |
References: | n.a. | Remaining Time: | 0.0d |
Sprint: | n.a. |
Description (last modified by jmoore)
Depending on the overall strategy chosen, either the "guest" user should also be kept non-LDAP, or the root user should be LDAP-able (see #6702), keeping in mind, though, that many LDAPs will have a "root" user who has nothing to do with OMERO. For this to work, properly, the mapping of "omeName" may have to be altered, so that the DN is automatically trusted regardless of the user's name (in which case it may be necessary to prevent user synchronization!)
Change History (2)
comment:1 Changed 13 years ago by jmoore
- Description modified (diff)
comment:2 Changed 13 years ago by jmoore <josh@…>
- Remaining Time set to 0
- Resolution set to fixed
- Status changed from new to closed
(In [74f175d86e7b0e496b982692548dcd255c994539/ome.git] on branch develop) Correct user_filter and user filtering (Fix #6248, #6703)