•  
      request #13256 The bind to the LDAP directory should not be kept after having authenticated a user
    Infos
    #13256
    Thomas Gerbet (tgerbet)
    2019-04-24 16:38
    2019-04-11 14:38
    13359
    Details
    The bind to the LDAP directory should not be kept after having authenticated a user
    Currently, once Tuleap has authenticated a user the bind is kept and all remaining LDAP queries for the process are done with it. This can cause issues when the user that tries to authenticated has less rights than the account defined by the sys_ldap_bind_dn setting.

    After having having authenticated a user, Tuleap should unbind from the directory and if necessary re-bind itself with the information defined in the ldap.inc.
    Empty
    Authentication & LDAP
    All
    Empty
    Empty
    Stage
    Empty
    Closed
    2019-04-24
    Attachments
    Empty
    References

    List of items referenced by or referencing this item.

    Artifact Tracker v5

    Follow-ups