Hello Paul,
 
I will send you the patch ASAP.
 
We have a very big LDAP installation worldwide. So there is some users with the same samAccountName under different Domain. We want to use Mantis also worldwide, so that's why I need the non-unique uid issue.
 
Since we have only readonly access on our LDAP :-(, but we have also extern users for mantis, so I choose the fallback login, which is for us easy and fast to solve the problem.
 
Regards
 
Kanyin


From: mantisbt-dev-admin@lists.sourceforge.net [mailto:mantisbt-dev-admin@lists.sourceforge.net] On Behalf Of Paul Richards
Sent: Tuesday, January 18, 2005 7:23 PM
To: mantisbt-dev@lists.sourceforge.net
Subject: RE: [Mantisbt-dev] Show Custom fields

Hello Kanyin,

 

Can you mail me the patch for issues 3 and 4 and I’ll have a look over them, with a view to committing them to CVS if they seem sensible.

 

Regarding 2:

 

I somewhat wonder if that’s even needed in the core product. I mean, “non-unique unique identifier” is somewhat a conflict in terms. In a windows environment, I believe that for uid we suggest using the samAccountName, which afaik *is* unique across a single domain.

 

As an additional note to number 1, it’s probably worth looking at how we handle authentication at the moment:

 

I recently wanted to move to LDAP authentication instead of MD5/PLAIN. As part of this, I ended up implementing an NTLM_LDAP authentication scheme (trusts the user from their NTLM credentials, then uses LDAP to get user email/name without requiring authentication).

 

Your suggestion is somewhat different basically a ‘fallback logon’ system i.e. if LDAP fails try BASIC_AUTH/MD5/PLAIN/CRYPT. Given that in general we don’t want to store a copy of a users LDAP password (for security reasons), I somewhat wonder how easy this sort of fallback functionality would be to use. What does your current implementation currently do?

 

Paul

 

 

-----Original Message-----
From: mantisbt-dev-admin@lists.sourceforge.net [mailto:mantisbt-dev-admin@lists.sourceforge.net] On Behalf Of Cai Kanyin (CI/ACA1) *
Sent:
18 January 2005 16:01
To: mantisbt-dev@lists.sourceforge.net
Subject: [Mantisbt-dev] Show Custom fields

 

Hi,

I have made some modifications on Mantis 0.19.2 to add the following feature:

1. login first with the ldap module, if failed, try login with  the mysql module
2. reject user with non unique uid in LDAP for login
3. show custom fields in "Show Issues", "Print Reports", "Excel 2000" view
4. custom fields can be choosed in "Printing Options"

Where can I upload the patch? Or check into cvs?

Kanyin Cai

e-Mail:kanyin.cai@de.bosch.com