[Rt-commit] rt branch, 4.4/no-password-on-external-auth, created. rt-4.4.2-38-gdde02af
Jim Brandt
jbrandt at bestpractical.com
Thu Sep 14 14:20:01 EDT 2017
The branch, 4.4/no-password-on-external-auth has been created
at dde02af8b0c6fdf7f7a404b8aeb13dd53d6c8217 (commit)
- Log -----------------------------------------------------------------
commit dde02af8b0c6fdf7f7a404b8aeb13dd53d6c8217
Author: Jim Brandt <jbrandt at bestpractical.com>
Date: Thu Sep 14 14:04:57 2017 -0400
Add ExternalAuth to the exceptions for requiring a password
External authentication can be enabled in RT via WebRemoteUserAuth,
which handles authentication in Apache and passes REMOTE_USER to
RT, or via ExternalAuth, which calls an external system from within RT.
Add the second to the configuration checks to determine if
external authentication is enabled and a password check cannot be
done.
diff --git a/lib/RT/User.pm b/lib/RT/User.pm
index 7b89d21..f4024a3 100644
--- a/lib/RT/User.pm
+++ b/lib/RT/User.pm
@@ -1163,8 +1163,9 @@ sub CurrentUserRequireToSetPassword {
RequireCurrent => 1,
);
- if ( RT->Config->Get('WebRemoteUserAuth')
- && !RT->Config->Get('WebFallbackToRTLogin')
+ if ( (RT->Config->Get('WebRemoteUserAuth')
+ && !RT->Config->Get('WebFallbackToRTLogin'))
+ || RT->Config->Get('ExternalAuth')
) {
$res{'CanSet'} = 0;
$res{'Reason'} = $self->loc("External authentication enabled.");
-----------------------------------------------------------------------
More information about the rt-commit
mailing list