GNUsocial/gnu-social
4
0
Fork 1
Code Issues Releases Wiki Activity

Added CAS user whitelist feature

Browse Source 
This feature filters users who may log in via CAS. This is useful when
both CAS and password authentication is enabled and there is a mismatch
between some GNU social account names and CAS user names. This prevents
CAS users from logging in as someone else on GNU social.
This commit is contained in:
Andrew Engelbrecht
2017-04-17 12:34:25 -04:00
committed by Andrew Engelbrecht
parent 2a8ab1c6ca
commit 6ca5bb4d41
3 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
plugins/CasAuthentication/CasAuthenticationPlugin.php
View File

@@ -40,6 +40,7 @@ class CasAuthenticationPlugin extends AuthenticationPlugin
public $port = 443;
public $path = '';
public $takeOverLogin = false;
public $user_whitelist = null;
function checkPassword($username, $password)
{
@@ -145,6 +146,7 @@ class CasAuthenticationPlugin extends AuthenticationPlugin
$casSettings['port']=$this->port;
$casSettings['path']=$this->path;
$casSettings['takeOverLogin']=$this->takeOverLogin;
$casSettings['user_whitelist']=$this->user_whitelist;
}
function onPluginVersion(array &$versions)