Description
Currently, the Admin UI Plugin allows the creation of delegated authentication directories that simply delegate the authentication to the LDAP server, but do nothing else.
https://skitch.com/shihabske/rk4fu/configure-ldap-user-directory-jdog-jira-team-dogfood
In Crowd, delegated authentication directories copy the user on auth. It would be good if the Admin UI Plugin allows an option to copy the user on auth (just a flag - perhaps checkbox or radio button on the UI). This will then set the attribute ATTRIBUTE_CREATE_USER_ON_AUTH to true/false. The underlying logic to perform the actual copy-on-auth is already implemented.
The other part of this UI task is to show/hide extra properties required to implement copy-on-auth. In particular, when "copy on auth" is first selected, we will need to allow the user to enter in values for the:
- user display name attribute
- user first name attribtue
- .. etc
ie. ALL of the User related attributes, NONE of the group related ones
See the Crowd documentation for an idea of what attributes we should be displaying: http://confluence.atlassian.com/display/CROWD/Configuring+a+Delegated+Authentication+Directory
We can copy the UI elements from the UI Plugin Screen to create a full LDAP directory (so that the UI looks consistent).
https://skitch.com/shihabske/rk4f6/configure-ldap-user-directory-jdog-jira-team-dogfood
Attachments
Issue Links
- is detailed by
-
CWD-2207 Embedded UI Plugin needs to support delegated authentication directories properly
- Closed
