[Rt-commit] rt branch, 4.4/no-password-on-external-auth, created. rt-4.4.2-38-gdde02af

Jim Brandt jbrandt at bestpractical.com
Thu Sep 14 14:20:01 EDT 2017


The branch, 4.4/no-password-on-external-auth has been created
        at  dde02af8b0c6fdf7f7a404b8aeb13dd53d6c8217 (commit)

- Log -----------------------------------------------------------------
commit dde02af8b0c6fdf7f7a404b8aeb13dd53d6c8217
Author: Jim Brandt <jbrandt at bestpractical.com>
Date:   Thu Sep 14 14:04:57 2017 -0400

    Add ExternalAuth to the exceptions for requiring a password
    
    External authentication can be enabled in RT via WebRemoteUserAuth,
    which handles authentication in Apache and passes REMOTE_USER to
    RT, or via ExternalAuth, which calls an external system from within RT.
    Add the second to the configuration checks to determine if
    external authentication is enabled and a password check cannot be
    done.

diff --git a/lib/RT/User.pm b/lib/RT/User.pm
index 7b89d21..f4024a3 100644
--- a/lib/RT/User.pm
+++ b/lib/RT/User.pm
@@ -1163,8 +1163,9 @@ sub CurrentUserRequireToSetPassword {
         RequireCurrent => 1,
     );
 
-    if ( RT->Config->Get('WebRemoteUserAuth')
-        && !RT->Config->Get('WebFallbackToRTLogin')
+    if ( (RT->Config->Get('WebRemoteUserAuth')
+        && !RT->Config->Get('WebFallbackToRTLogin'))
+        || RT->Config->Get('ExternalAuth')
     ) {
         $res{'CanSet'} = 0;
         $res{'Reason'} = $self->loc("External authentication enabled.");

-----------------------------------------------------------------------


More information about the rt-commit mailing list