The page must contain a form with an action field set to /login/index.php
and return fields username and password
TODO
It may be worth checking the URL when it's entered at admin/auth.php
to ensure it is at least pointing to a valid page as an incorrect URL
could potentially lock all users out of a site.
Started work with bug 2007
Bug 1969 is partacaly fixed. ldap-module supports now password expiration.
Some work with bugs 761 and 1730
Changes in login/index.php
Reordered some code to make variables reusable in multiple places.
Added redirection in case of expired password
Just select ldap-server type and you are done. Old variables can still be used
to override builtin settings.
TRANSLATORS NOTICE:
Some ldap-fields are now optional!
Course creators are managed by /admin/creator.php , same way that admins.
Or if authetication module have 'auth_iscreator'-function (right now only ldap-module have) ,
users are added to creators at login time.
Works currently only with ldap-module (tested with e-directory), but
other modules could be extended too by
adding following functions:
function auth_user_exists ($username) {
//returns true if given username already exists on authetication database
}
function auth_user_create ($userobject,$plainpass) {
//create new user to authentication database
//in inactive state (if posible)
//returns true if user is created
}
function auth_user_activate ($username) {
//activate external user after email-address is confirmed
//returns true if user is activated
}
exposes the wide array of authentication possibilities.
Authentication now has it's own page separate from other variables.
Most of this work was done by Petri Asikainen <paca@sci.fi>, who started
these changes off.
I've done some cleanups and additions which is why I'm checking it in.
It's all working pretty well at the moment but could use some testing.
Thanks, Petri! :-)
