Bug #393
Issue regarding staff login with email address
| Status: | New | Start date: | 06 Jun 2014 | |
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: | - | % Done: | 0% |
|
| Category: | - | |||
| Target version: | - |
Description
LDAP authenticator allows staff to login with account name as well as with email address. This results in creating two staff accounts in Admin CP, which should not be the case.
History
Updated by Darren Smith about 10 years ago
+1
This project seems dead, but hopefully not... :)
Updated by Darren Smith almost 9 years ago
Figured out how to workaround this issue - if anyone wants info, let me know.
Updated by Bob over 8 years ago
Darren Smith wrote:
Figured out how to workaround this issue - if anyone wants info, let me know.
Please do share - we're also plagued with this problem and would love to stop it.
Updated by Darren Smith over 8 years ago
Hi:
This should do it for you. Sorry for the late reply.
./ldap/kayako_ldap.php (~ line 286):
@ /**
* Get user name
*
* return string')) === true) { // Modified to === true so is evaluated correctly
*/
public function getUsername() {
//If we already have a user name send it back
if (!empty($this->username)) {
// Added if statement from test code below to disallow login by e-mail address
if (KAYAKO_LDAP_STRIP_EMAIL && ($pos = strpos($_POST['username'], '
$this->username = substr($_POST['username'], 0, $pos);
} else {
$this->username = $_POST['username'];
}
return $this->username;
}
@