EPrints Technical Mailing List Archive

Message: #05222


< Previous (by date) | Next (by date) > | < Previous (in thread) | Next (in thread) > | Messages - Most Recent First | Threads - Most Recent First

[EP-tech] Re: With LDAP user_login.pl script local users can’t login


Is there a possibility that there is an LDAP account with the same username as your admin login?

 

If so, this block:

my $entr = $result->pop_entry;

unless( defined $entr )

{

        … #check local admin account

}

would get passed over – and checked against LDAP for the password.

 

Putting this block first (from the first block of config on the wiki):

my $user = $repo->user_by_username( $username );
 return unless $user;
 
 $username = $user->value( "username" );
 
 my $user_type = $user->get_type;
 if( $user_type eq "admin" )
 {
  # internal authentication for "admin" type
  return $repo->database->valid_login( $username, $password );
 }

 

would confirm if this is the case or not.

 

Cheers,

John

 

 

From: eprints-tech-bounces@ecs.soton.ac.uk [mailto:eprints-tech-bounces@ecs.soton.ac.uk] On Behalf Of Denis Pitzalis
Sent: 03 December 2015 09:43
To: Eprints Tech Mailing List
Subject: [EP-tech] Re: With LDAP user_login.pl script local users can’t login

 

Hi Guys, I confirm the issue.
I have a similar configuration using LDAP and Kerberos to authenticate users from my organization. The login mechanism works fine but I am unable to register/authenticate non LDAP users.

Now that I think about, do you think it is possible to use different login systems depending on the email?

Denis

 

On Thu, Dec 3, 2015 at 10:32 AM, Field A.N. <af05v@ecs.soton.ac.uk> wrote:

Can LDAP authenticated accounts log in?  Can you paste the code in your user_login.pl file here?



--
Adam Field
Business Relationship Manager and Community Lead
EPrints Services
+44 (0)23 8059 8814





On 3 Dec 2015, at 09:28, pgasinos pgs wrote:

> I have tried to use the wiki's tutorial about LDAP. I have changed  user_roles according to the instructions. The script I have used is "LDAP Authentication with On-Demand Creation of Users" but I couldn't login as administrator. Eprints failed to authenticate with my local admin account.
> *** Options: http://mailman.ecs.soton.ac.uk/mailman/listinfo/eprints-tech
> *** Archive: http://www.eprints.org/tech.php/
> *** EPrints community wiki: http://wiki.eprints.org/
> *** EPrints developers Forum: http://forum.eprints.org/


*** Options: http://mailman.ecs.soton.ac.uk/mailman/listinfo/eprints-tech
*** Archive: http://www.eprints.org/tech.php/
*** EPrints community wiki: http://wiki.eprints.org/
*** EPrints developers Forum: http://forum.eprints.org/




--

----------------------
Denis Pitzalis, PhD
Web Lead Developer

UNESCO - http://www.unesco.org
Paris, France - Tel: +33145681816