From: Evan S. <ev...@dr...> - 2006-10-23 12:31:11
|
On Oct 22, 2006, at 10:34 PM, Daniel Atallah wrote: > On 10/22/06, Etan Reisner <de...@ed...> wrote: >> What authentication system do we want this to use? (This goes in hand >> with the open registration bit, we (more or less) need to use the >> internal database if we want open registration, but if we don't we >> can >> have it look at just about anywhere else we want, ldap, mysql, >> pam, etc. >> The ldap and mysql/obdc support is built in, for pam we'd have to >> use an >> auth module I wrote at Rutgers.) > > While we're on the subject of authentication, we should talk about > Trac authentication. > > In talking to Luke, he came up with the very reasonable requirement > that users must be registered in order to file bugs and other tickets. I'd like to recommend strongly the use of AccountManagerPlugin [1]. It adds an automatic registration system (including password retrieval) and a way for users to associate their email with their username for notification purposes without it being publicly viewable. Permissions can be set at a registered-user level by setting them for the user 'authenticated' from which all logged-in users inherit. [1] http://trac-hacks.org/wiki/AccountManagerPlugin -Evan |