Set username from the returned LDAP attributes. (!13) · Merge requests · edtech / Project Allocator · GitLab

Snippets Groups Projects

Merged Andrea Callia D'Iddio requested to merge fix-impersonation into master 2 years ago

With this MR, when logging in, the current username is set directly from the returned LDAP attributes, which prevents any issue with special operators used when specifying the username - e.g. impersonation operator, without the need to handle the impersonation logic, and therefore keeping the impersonation logic in just one place.

By doing this, there is no need to involve the auth.py module in the management of impersonation operators, keeping it "agnostic" with respect to how the username is specified and handled by the LDAP authenticator.

Before this fix, usernames like adumble as hpotter were added in the AuthenticatedUser table, instead of just hpotter, preventing the app from retrieving the right data associated with the impersonated user hpotter.

Edited 2 years ago by Andrea Callia D'Iddio

Activity

Andrea Callia D'Iddio requested review from @ip914 2 years ago

requested review from @ip914
Andrea Callia D'Iddio assigned to @ac4014 2 years ago

assigned to @ac4014
Andrea Callia D'Iddio changed the description 2 years ago

changed the description
Ivan Procaccini approved this merge request 2 years ago

approved this merge request
Ivan Procaccini added 1 commit 2 years ago
added 1 commit

5884ee08 - Fix: set username from the returned LDAP attributes, which prevents any issue...

Compare with previous version
Ivan Procaccini enabled an automatic merge when the pipeline for 5884ee08 succeeds 2 years ago

enabled an automatic merge when the pipeline for 5884ee08 succeeds
Ivan Procaccini mentioned in commit 01fdfd62 2 years ago

mentioned in commit 01fdfd62
Ivan Procaccini merged 2 years ago

merged
Andrea Callia D'Iddio changed the description 2 years ago

changed the description

Please register or sign in to reply