Fixes #11407 - Uppercase logins from LDAP break external user group sync

On LDAP the login can contain uppercase chars, for instance, "FOO". However
when we log in Foreman for the first time and have that account auto-created,
we can login using "foo". After that, our login will be saved as "foo" on...

fixes #5897 - when user doesn't have an email, email isn't required

fixes #10829 - non-admin user cannot update admin password

fixes #8049 - Add timezone to user

Refs #3809 - Remove useless assignments

Fixes #7369 - External user groups update on login

Refs #3809 - fix shadowing outer local variables

fixes #7586, #7734, #7172 - user preferences for receiving mail notifications

Adds a framework for user-selectable mail notifications. The work is
still done in ActionMailer classes and launch by rake in cron, however a
wrapper called MailNotification is used to provide RBAC and make the...

fixes #4439 - ensure user logins are handled case insensitively

Fixes #5139 - leftovers subscribe_to_all_hostgroups

Remove user_xxx unnecessary tables and notices

Update subhostgroups removed

Fixes for migration of foreign keys

Remove users from compute_resource fixture

Remove table notices after fk are removed for pg/mysql

Refs #3809 - Use parentheses in method definitions

Fixes #7393 - searching users by role_id not supported

fixes #5811 - Validates emails to RFC 5322 specification

Fixes #5929 - Taxonomy filter obey permissions

With this patch you can assign permissions like assign_organizations and
assign_locations to particular user so that they can then assign
taxonomies
only from set of taxonomies granted by their filters.

Global users would be still able to assign any taxonomy to a resource as...

fixes #7066 - add back $login interpolation for LDAP service account usernames

In cases where an LDAP connection is required outside of the context of user
authentication (e.g. validation of external user group name), an error is
thrown. Users are recommended to use dedicated service accounts for this...

fixes #6964 - replace default scope that hides users with explicit scope

Fixes #813 - External usergroups can be linked to an LDAP auth source

Fixes #6606 - Allow deletion of non-admin users if 1 admin

When deleting users, you get an error message if there's only one admin account
even if the users aren't admins.

fixes #3272 - allow 'admin' account to be removed and replaced

Fixes #6117 - clean usergroup cache

Dependent destroy was missing on through association from user side.

fixes #5869 - permit accents in user names on Ruby 1.8

fixes #5242 - Update external user attributes and group membership on every logon

fixes #3892 - process REMOTE_USER_GROUP_N and REMOTE_USER_GROUP_#, add user to groups based on external user groups.

fixes #5224 - Don't update a user with blank LDAP attribute values

Fixes #5180 - in_taxonomy clears out Taxonomy.current

fixes #5141 - User unable to access children taxonomies on switcher

fixes #3914 - set current taxonomies on login from user defaults

Fixes #4537 - user can set empty roles array via API

fixes #812 - new permissions model, user group role and nest support, role filters for better granularity

• Daniel Lobato <elobatocs@gmail.com>
• Joseph Magen <jmagen@redhat.com>
• Tom McKay <thomasmckay@redhat.com>
• Greg Sutcliffe <gsutclif@redhat.com>...

fixes #4298 - ldap auth should accept parens in firstname or surname

fixes #3528 - Populate first name, last name, and email, if available.

fixes #3930 - refactoring of edit_self implementation.

fixes #3493 - check if auto user reg is allowed for auth source

fixes #3312 - support /users/extlogin as a login page based on REMOTE_USER

fixes #2630 - restrict assignment of roles to those a user has (CVE-2013-2113)

Fixes #2571 - Deleted admin is recreated

fixes #2281 - don't allow admin flag to be removed from admin account

fixes #1978 - changing login maximum size to 100

In case of using a long login name (such as ovirt_username@domain), on
the fly login will fail. Increasing the maximum login size to 100.

Fixed validation error handling and auth durin admin user creation

fixes #1638 - remove whitespaces for user email instead of validation error

fixes #1613 - Email address format validation preventing admin user creation

fixes #1456 - renaming the admin account should not be allowed

fixes #1064 - last login info for a user without admin rights is not updated

Fixes #366 - Redmine authorization port

This is a major feature which provides RBAC authorization within Foreman
a mental note to myself - never ever work on large commits

Fixes #390 - A user account is always associated with a session

Fixes #145 - Added AuthSourceInternal

Added a password setting facility to the user class for AuthSourceInternal
Switched to SHA1
Changed :ldap to :login
Applied numerous fixes from Ohad Levy
Fixed malformed user page
Switched attr_accessible to attr_protected...

Fixes #232 - Removes AS from Users page

The password verification test has not yet been implemented but will get done in AuthSourceInternal fix
All tests now pass These tests now work whether settings[:ldap] is enabled or not
Plus whitespace fix

Fixes #170 - implement usergroups

Added migration
Added tests
Added MVC files
Added the routes as well
Added the program logic and additional views
Added RESTful actions for update and create
Added validations to ensure that usergroup.name and user.login do not collide...

added some explanations in reports_controller_test, fact_values_test, users_controller_test, fact_value_controller_test, user_test, about why there is some missing tests. Refactored the auth_source_ldap_controller.

A couple modifications to AuthSourceTest and UserTest. See details.

1. refactor some tests in auth source test, this test is incompleted, cause self.authenticate use authenticate which is not implemented yet.
2. Almost finished, try_to_login method, but uses the auth source authenticate, so I can't move forward.

Several corrections and improvements. See full description for more detail.

1. Corrected a bug in domain model. In countFact method there was a mistaken search, with the domain name.
2. Finished the domain test
3. Corrected a bug in host_mailer model. In summary method when the conditions hash is declared, in order was a mistaken search with the hosts names....

removed trailing spaces in home_controller_test and in user_test

removed trailing spaces in user_test and the initial "Replace this with..." comment

Added User Test. It lacks auth test.

Squashed commit of the following:

commit c4382aeea5d72402bcbf3049d3c08f74792ca379
Author: Ohad Levy <ohadlevy@gmail.com>
Date: Thu Oct 15 22:03:26 2009 +0800

disable ldap by default

commit 685baf5f2c78128feebcbeed6910b131a072a81b
Author: Ohad Levy <ohadlevy@gmail.com>...