Skip to main content

Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

    •  
      request #13256 The bind to the LDAP directory should not be kept after having authenticated a user
    Actions
    Infos
    #13256
    Thomas Gerbet (tgerbet)
    2019-04-24 16:38
    2019-04-11 14:38
    14125
    Details
    The bind to the LDAP directory should not be kept after having authenticated a user
    Currently, once Tuleap has authenticated a user the bind is kept and all remaining LDAP queries for the process are done with it. This can cause issues when the user that tries to authenticated has less rights than the account defined by the sys_ldap_bind_dn setting.

    After having having authenticated a user, Tuleap should unbind from the directory and if necessary re-bind itself with the information defined in the ldap.inc.
    Authentication & LDAP
    All
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Empty
    Closed
    2019-04-24
    Attachments
    Artifact links

    Releases

    Fixed in

    Artifact ID Project Tracker Summary Status Last Update Date Submitted By Assigned to
    rel #12934 Tuleap Releases 11.1 Delivered 2019-02-05 12:05 Manuel Vacelet (vaceletm)
    Empty
    References
    Referencing request #13256

    Git commit

    tuleap/tuleap/stable

    Merge commit 'refs/changes/81/14681/2' of ssh://gerrit.tuleap.net:29418/tuleap 62bec535ba
    User avatar Manuel Vacelet (vaceletm) , 2019-04-24 16:35
    request #13256: The bind to the LDAP directory should not be kept after having authenticated a user 92e1b429bd
    User avatar Thomas Gerbet (tgerbet) , 2019-04-16 08:48
    Referenced by request #13256

    Artifact Tracker v5

    rel #12934 11.1

    Other

    gerrit #14681
    Display settings

    Follow-ups

    User avatar
    Manuel Vacelet (vaceletm)2019-04-24 16:38

    Integrated in Tuleap 11.0.99.100

    • Status changed from Under review to Closed
    • Connected artifacts
    • Close date set to 2019-04-24