819002 – [RFE] Hide password creation and Email fields at user creation time if LDAP auth is enabled in CFSE

Bug 819002 - [RFE] Hide password creation and Email fields at user creation time if LDAP auth is enabled in CFSE

Summary: [RFE] Hide password creation and Email fields at user creation time if LDAP a...

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Subscription Asset Manager
Classification:	Retired
Component:	katello
Sub Component:
Version:	1.0.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	urgent
Target Milestone:	beta
Target Release:	1.0
Assignee:	Jordan OMara
QA Contact:	Og Maciel
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	sam12-tracker 820626 858358 876492
TreeView+	depends on / blocked

Reported:	2012-05-04 14:56 UTC by Eric Sammons
Modified:	2014-11-09 22:56 UTC (History)
CC List:	6 users (show)
Fixed In Version:
Clone Of:
Clones:	820626 858358 (view as bug list)
Environment:
Last Closed:	2013-02-21 19:15:56 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2013:0544	0	normal	SHIPPED_LIVE	Important: Subscription Asset Manager 1.2 update	2013-02-26 04:08:04 UTC

Description Eric Sammons 2012-05-04 14:56:00 UTC

Description of problem:
When warden is set to ldap the New User option should not be visible as local users are not supported.  When a new user is created via the New User option from a LDAP configured instance that user will be unable to login due to the warden value being set to ldap.

Version-Release number of selected component (if applicable):
katello-headpin-all-0.2.6-1.el6_2.noarch


Steps to Reproduce:
1. Configure SAM (Katello) with auth type ldap.
2. Login with an administrative user
3. Navigate to the Administrator / Users tab
4. Note the New User option is available
5. Create new user
6. logout
7. Attempt to login with new user
  
Actual results:
Unable to login

Expected results:
Either support multiple wardens, r/w access to the ldap to create new users, or disable the new user link when warden is ldap.

Comment 1 Jordan OMara 2012-05-07 19:07:06 UTC

The new user option is still valid under LDAP. Adding a user w/ a valid LDAP username allows you to set additional roles for that user. 

It might be worthwhile to remove the ability to set a password for the user, since that password would never get used in LDAP mode

Comment 2 Jordan OMara 2012-05-08 21:10:26 UTC

Changing to RFE to disallow password setting on new user creation in LDAP auth mode

Comment 4 Jordan OMara 2012-06-19 12:33:08 UTC

merged https://github.com/Katello/katello/pull/213/

Admins are no longer prompted for email/password when creating LDAP users

However, if for some reason they disable LDAP mode after install (I'm not sure if this is supported or not) those users will not be able to login until a password is set by an admin

Comment 5 Og Maciel 2012-10-09 22:06:59 UTC

Verified:

* candlepin-0.7.12-1.el6_3.noarch
* candlepin-tomcat6-0.7.12-1.el6_3.noarch
* katello-candlepin-cert-key-pair-1.0-1.noarch
* katello-certs-tools-1.1.8-1h.el6_3.noarch
* katello-cli-common-1.1.10-1h.el6_3.noarch
* katello-cli-headpin-0.2.2-1.el6_2.noarch
* katello-common-1.1.14-2h.el6_3.noarch
* katello-configure-1.1.11-1h.el6_3.noarch
* katello-glue-candlepin-1.1.14-2h.el6_3.noarch
* katello-headpin-1.1.14-2h.el6_3.noarch
* katello-headpin-all-1.1.14-2h.el6_3.noarch
* katello-selinux-1.1.2-1h.el6_3.noarch

Comment 7 errata-xmlrpc 2013-02-21 19:15:56 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHSA-2013-0544.html

Note You need to log in before you can comment on or make changes to this bug.