fixes #5242 - Update external user attributes and group membership on every logon
fixes #3892 - process REMOTE_USER_GROUP_N and REMOTE_USER_GROUP_#, add user to groups based on external user groups.
fixes #5224 - Don't update a user with blank LDAP attribute values
Fixes #5180 - in_taxonomy clears out Taxonomy.current
fixes #5141 - User unable to access children taxonomies on switcher
fixes #3914 - set current taxonomies on login from user defaults
Fixes #4537 - user can set empty roles array via API
fixes #812 - new permissions model, user group role and nest support, role filters for better granularity
fixes #4298 - ldap auth should accept parens in firstname or surname
fixes #3528 - Populate first name, last name, and email, if available.
fixes #3930 - refactoring of edit_self implementation.
fixes #3493 - check if auto user reg is allowed for auth source
fixes #3312 - support /users/extlogin as a login page based on REMOTE_USER
fixes #2630 - restrict assignment of roles to those a user has (CVE-2013-2113)
Fixes #2571 - Deleted admin is recreated
fixes #2281 - don't allow admin flag to be removed from admin account
fixes #1978 - changing login maximum size to 100
In case of using a long login name (such as ovirt_username@domain), onthe fly login will fail. Increasing the maximum login size to 100.
Fixed validation error handling and auth durin admin user creation
fixes #1638 - remove whitespaces for user email instead of validation error
fixes #1613 - Email address format validation preventing admin user creation
fixes #1456 - renaming the admin account should not be allowed
fixes #1064 - last login info for a user without admin rights is not updated
Fixes #366 - Redmine authorization port
This is a major feature which provides RBAC authorization within Foremana mental note to myself - never ever work on large commits
Fixes #390 - A user account is always associated with a session
Fixes #145 - Added AuthSourceInternal
Added a password setting facility to the user class for AuthSourceInternalSwitched to SHA1Changed :ldap to :loginApplied numerous fixes from Ohad LevyFixed malformed user pageSwitched attr_accessible to attr_protected...
Fixes #232 - Removes AS from Users page
The password verification test has not yet been implemented but will get done in AuthSourceInternal fixAll tests now pass These tests now work whether settings[:ldap] is enabled or notPlus whitespace fix
Fixes #170 - implement usergroups
Added migrationAdded testsAdded MVC filesAdded the routes as wellAdded the program logic and additional viewsAdded RESTful actions for update and createAdded validations to ensure that usergroup.name and user.login do not collide...
added some explanations in reports_controller_test, fact_values_test, users_controller_test, fact_value_controller_test, user_test, about why there is some missing tests. Refactored the auth_source_ldap_controller.
A couple modifications to AuthSourceTest and UserTest. See details.
1. refactor some tests in auth source test, this test is incompleted, cause self.authenticate use authenticate which is not implemented yet.2. Almost finished, try_to_login method, but uses the auth source authenticate, so I can't move forward.
Several corrections and improvements. See full description for more detail.
1. Corrected a bug in domain model. In countFact method there was a mistaken search, with the domain name.2. Finished the domain test3. Corrected a bug in host_mailer model. In summary method when the conditions hash is declared, in order was a mistaken search with the hosts names....
removed trailing spaces in home_controller_test and in user_test
removed trailing spaces in user_test and the initial "Replace this with..." comment
Added User Test. It lacks auth test.
Squashed commit of the following:
commit c4382aeea5d72402bcbf3049d3c08f74792ca379Author: Ohad Levy <ohadlevy@gmail.com>Date: Thu Oct 15 22:03:26 2009 +0800
disable ldap by default
commit 685baf5f2c78128feebcbeed6910b131a072a81bAuthor: Ohad Levy <ohadlevy@gmail.com>...