Difference between revisions of "LGI/Authentication"
Jump to navigation
Jump to search
(Created page with "Deepthi, it's all yours....") |
(→Things to do: some more stuff done) |
||
| (6 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
Deepthi, it's all yours.... | Deepthi, it's all yours.... | ||
| + | |||
| + | ==Things to do== | ||
| + | * Option in <tt>lgi.config.php</tt> to require SSL or not | ||
| + | ** It should not be possible to submit plaintext login details without SSL. Currently this check is done afterwards, which is not so good. | ||
| + | * Be able to use different authentication methods together | ||
| + | ** multiple columns in single user table, which one is used depends on login method chosen | ||
| + | * Autodetect sensible user and group from certificate in <tt>php/lbijog/jobmanage.php</tt> when not specified | ||
Latest revision as of 11:48, 25 August 2011
Deepthi, it's all yours....
Things to do
- Option in lgi.config.php to require SSL or not
- It should not be possible to submit plaintext login details without SSL. Currently this check is done afterwards, which is not so good.
- Be able to use different authentication methods together
- multiple columns in single user table, which one is used depends on login method chosen
- Autodetect sensible user and group from certificate in php/lbijog/jobmanage.php when not specified