Commit Graph

135 Commits

Author SHA1 Message Date
exe-cutor 5724019cc4 Saves admins some work. shib-protected just redirects to /auth/shibboleth/index.php
but only if a user is Shibboleth authenticated.
2005-05-06 13:14:31 +00:00
exe-cutor bab8ceb10e Extended and corrected the error messages 2005-05-06 06:35:24 +00:00
exe-cutor 6c0aee4769 Updated README with better instructions, added .htaccess file which
provides lazy Shibboleth sessions and fixed a small bug in config.html
2005-05-04 14:40:01 +00:00
phoenixfr e5a144bca7 anonymous login error solve (trash way) 2005-04-29 08:38:21 +00:00
phoenixfr 955db841f8 $CASLANGUAGES correction 2005-04-25 08:39:07 +00:00
moodler 648fdb81c9 Cleaning up configuration 2005-04-17 13:27:43 +00:00
moodler 5c6ec5d0cd FIxed a typo 2005-04-17 13:12:10 +00:00
moodler 565809c603 Moved login.php to index.php in shibboleth 2005-04-17 13:06:25 +00:00
moodler 3bddb38ac9 FIxes for auth_user_login 2005-04-17 12:58:50 +00:00
moodler 121b31327b Changed things to be simpler, using new functions in moodlelib.php 2005-04-17 12:39:02 +00:00
moodler 7c12949d10 Rationalised get_user_info_from_db() and sundry other small bits into
a single function called: get_complete_user_data()

This is to help shibboleth but will also help when this function
needs to be extended in future.
2005-04-17 12:08:46 +00:00
paca70 e8a7fa9afd Added missing argumet 2005-04-04 10:16:28 +00:00
moodler aeb2bcace4 Removed old files 2005-03-23 09:55:52 +00:00
lapsa 64a2cb2022 Introduction to use shibboleth authentication module in Moodle. 2005-03-18 09:15:00 +00:00
phoenixfr 84391243f3 Cas specific 2005-03-16 10:43:38 +00:00
phoenixfr 6fcd19e3cb CAS function Call 2005-03-16 10:40:39 +00:00
martinlanghoff 989fa91059 Now CAS-supplied tokens can override LDAP auth - fixed 2005-03-16 10:23:16 +00:00
martinlanghoff 1f568ab426 Generalized more references to LDAP so as to be reusable by the CAS module 2005-03-16 09:17:00 +00:00
martinlanghoff dd49e6f657 Now CAS-supplied tokens can override LDAP auth 2005-03-16 09:13:15 +00:00
martinlanghoff 56cfbcd5c9 Allow LDAP logic to be reused by other modules 2005-03-15 20:52:34 +00:00
martinlanghoff fc44d2121f Fixed a misnamed/renamed variable probably due to a recent merge from stable that used the old var name. 2005-03-14 19:34:21 +00:00
phoenixfr 9b7e5dd2d6 call of cas function in lib.php 2005-03-14 13:02:14 +00:00
phoenixfr 5888f3912c add of cas functions for login module 2005-03-14 13:01:22 +00:00
phoenixfr f8c330c023 *** empty log message *** 2005-03-14 12:19:17 +00:00
gustav_delius 93d34a8c5b some XHTML fixes 2005-03-13 13:55:19 +00:00
phoenixfr 863c3cd67c *** empty log message *** 2005-03-13 10:14:01 +00:00
phoenixfr ec7d2201cc cas functions frr login 2005-03-13 10:07:40 +00:00
moodler 0dd01de516 Removed CAS library from here 2005-03-11 17:15:35 +00:00
phoenixfr 5b9d159e8d *** empty log message *** 2005-03-11 07:48:28 +00:00
phoenixfr d9121bf868 phpcas comment 2005-03-11 07:43:47 +00:00
phoenixfr f0f0a34af0 functions for login module 2005-03-10 13:57:48 +00:00
phoenixfr 1ca9c0a45a use of css 2005-03-10 10:02:02 +00:00
phoenixfr 4e61423bd9 use of ldap congig.html and use of the css 2005-03-10 10:01:18 +00:00
paca70 879d932815 Fixed mistake on url-trimming and added some debug info. 2005-03-09 20:24:13 +00:00
phoenixfr 426e2aa335 *** empty log message *** 2005-03-09 12:43:07 +00:00
phoenixfr 3fb7e0a074 Version 1 du module CAS 2005-03-09 12:36:24 +00:00
phoenixfr abbcd5f723 *** empty log message *** 2005-03-08 15:02:21 +00:00
martinlanghoff e739b19a7e Merged from MOODLE_14_STABLE - Fixed bug 2319 DB auth not fetching user data fields correctly -- credits go to andres.marquez@accenture.com and doug nutsch 2005-03-07 02:01:25 +00:00
martinlanghoff cecfc11d81 Merged from MOODLE_14_STABLE - Better handling of trailing semicolons and spaces in LDAP configs. Fixes a regression from 1.4.2, plus fixed typo: == should be = 2005-03-01 03:10:34 +00:00
lapsa c0f750050e Document for using shibboleth authentication module with Moodle 2005-02-24 12:10:34 +00:00
moodler f0fd3436be Some cleanups just to make these pages look acceptable 2005-02-09 12:55:34 +00:00
moodler 21c7f77048 Removed a lot of needless <p> tags 2005-02-08 09:36:21 +00:00
moodler 09e42fc937 Stop people browsing auth modules 2005-01-23 04:18:32 +00:00
martinlanghoff b36a8fc4f5 Auth/LDAP
Bugfix - value truncation to fit Moodle database
- Added truncate_userinfo() to cleanup data coming from external auth
- Fixed auth_user_create() to truncate user info as appropriate

Auth_ldap_user_sync
- created external script that calls the function
- much faster update strategy on postgres and mysql: auth_sync_users now to uses bulk inserts into a temp table, and then use LEFT JOINs and plain old SELECTs to determine what users it has to insert.
- we now loop over smaller sets of data -- we are still memory-bound, but (a) it'll be easy to use LIMIT to manage that and (b) memory use is much lower now in all cases.
- postgres: phased commits in auth_user_sync() for the batch user upload phase
- Several feature and performance enhancements:
  - if a value is removed from ldap, it will be cleared from moodle
  - no-op updates (where the data does not change) are skipped
  - if a user disappears and then reappears in LDAP in two separate calls to auth_user_sync(),the account will be marked deleted and then be revived. before, the account would have been deleted and created anew.

Multi-source ldap values:

The LDAP auth module now accepts a comma separated set of LDAP field names. When creating or updating a user record, auth/ldap will retrieve all the relevant fields. The right-most values overwrites all the others.

This is particularly useful when updating the user's email address from an LDAP source, which may contain the email address in one of several fields (traditionally: mail, mailForwardingAddress, mailAlternateAddress).

If a value is updated and is set to update external auth and this field is using this multi-source ldap configuration, the auth/ldap module will retrieve the old value, find which field it was sourced from, and update that field in LDAP. If it fails to find the original source of the value, it will log it in error_log.


Log of patchsets applied:
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-131
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-137
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-139
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-172
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-173
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-189
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-190
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-208
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-212
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-216
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-279
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-282
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-287
	arch-eduforge@catalyst.net.nz--2004/moodle--eduforge--1.3.3--patch-294
2004-11-22 07:46:10 +00:00
martinlanghoff c95aa089a8 Merged from MOODLE_14_STABLE: Fixing handling of empty memory_limit for PHP without memory_limit (mostly Windows binaries) 2004-11-20 10:38:43 +00:00
paca70 8021cc54c1 Allow config how aliases are derefered. 2004-11-08 18:13:00 +00:00
moodler 624dc86a4d Very early version of Shibboleth plugin, looking for feedback 2004-11-08 15:08:19 +00:00
paca70 52192a5ce7 Prevent error messages when username is not member of group 2004-11-08 10:55:57 +00:00
paca70 585c23419d Some more code to support password expiration 2004-10-28 11:40:55 +00:00
paca70 e0f5a5be1d Allow auth_ldap_connect() to take binddn ja bindpwd
CVS: ----------------------------------------------------------------------
2004-10-18 16:33:25 +00:00