Details
-
Improvement
-
Resolution: Fixed
-
Medium
-
None
-
None
-
true
Description
This change is required for the Crowd delegated authentication feature where the user details are only retrieved upon the first successful authentication.
The proposed change is to authenticate the user first before retrieving the user details in the login(..) method. Only retrieve the user details after the authentication is successful. The implication is that classes overriding authenticate(..) must handle the case where the user is not found, and return false.
Attachments
Issue Links
- relates to
-
CONFSERVER-22157 Custom authenticators which subclass ConfluenceAuthenticator are broken in Confluence 3.5
- Closed
-
CWD-2650 Crowd doesn't create new users automatically in other directories when he first login, but after sometime
- Closed