•  
      request #16607 Allow ldap login when openidconnect client is used
    Infos
    #16607
    Manuel Vacelet (vaceletm)
    2020-09-10 13:56
    2020-08-27 13:10
    17913
    Details
    Allow ldap login when openidconnect client is used

    When OpenID Connect (OIDC) is activated, it's no longer possible to authenticate with LDAP credentials (while it's possible to login with local "Tuleap" credentials). It makes almost impossible for platform that are using LDAP to move to OpenID Connect as existing users will be stuck outside.

    LDAP Login should be allowed to ease the transition.

    First and foremost, this is made to allow transition from LDAP to OpenID Connect client. The transition can take time but the goal should be to no longer authenticate users against LDAP:

    • there should not be more than one source of truth to identify users.
    • when tuleap delegate authentication to an OIDC provider, tuleap should no longer manipulate user passwords (even a forward to an LDAP server).

     

    Authentication & LDAP
    11.18
    Empty
    • [x] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Manuel Vacelet (vaceletm)
    Closed
    2020-09-10
    Attachments
    Empty
    References

    Follow-ups

    User avatar

    Closing this request.

    The remaining work on SVN will be done in art #16681 in Tuleap 12.1


    • Status changed from Under implementation to Closed
    • Connected artifacts
    • Close date set to 2020-09-10
    User avatar
    • Original Submission
      Something went wrong, the follow up content couldn't be loaded
      Only formatting have been changed, you should switch to markup to see the changes